Oct 20, 2020 8:00 pm EDT
Categorized: Low Severity
Share this post:
IBM MQ could allow under special circumstances, an authenticated user to obtain sensitive information due to a data leak from an error message within the pre-v7 pubsub logic.
Affected product(s) and affected version(s):
| Affected Product(s) | Version(s) |
| IBM MQ | 9.1 LTS |
| IBM MQ | 9.0 LTS |
| IBM MQ | 8.0 |
| IBM MQ | 9.1 CD |
| IBM WebSphere MQ | 7.5 |
| IBM WebSphere MQ | 7.1 |
Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: https://www.ibm.com/support/pages/node/6335693
from IBM Product Security Incident Response Team https://ift.tt/37qYKjK
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.