First published: Fri Nov 03 2023(Updated: )
IBM MQ Appliance 9.3 CD could allow a local attacker to gain elevated privileges on the system, caused by improper validation of security keys. IBM X-Force ID: 269535.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM MQ Appliance | <=9.3 CD | |
=9.3.0.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for the IBM MQ privilege escalation is CVE-2023-46176.
The severity of CVE-2023-46176 is medium with a severity value of 6.7.
IBM MQ Appliance version 9.3 CD is affected by CVE-2023-46176.
A local attacker can exploit CVE-2023-46176 by gaining elevated privileges on the system due to improper validation of security keys in IBM MQ Appliance 9.3 CD.
You can find more information about CVE-2023-46176 on the IBM Support page (https://www.ibm.com/support/pages/node/7060769) and the IBM X-Force ID page (https://exchange.xforce.ibmcloud.com/vulnerabilities/269535).