Sensitive Information Exposure in IBM MQ M2000 Appliances
CVE-2015-7420

3.7LOW

Key Information:

Vendor
IBM
Status
MQ Appliance M2000
Vendor
CVE Published:
1 January 2016

Summary

An unspecified vulnerability exists in GSKit for IBM MQ M2000 appliances prior to version 8.0.0.4, potentially allowing remote attackers to access sensitive information via unknown vectors. This issue highlights the necessity for regular updates and robust security measures to protect affected environments.

References

http://www.securitytracker.com/id/1034846
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/82301
vdb-entryx_refsource_BID
http://www-01.ibm.com/support/docview.wss?uid=swg21971500
x_refsource_CONFIRM

CVSS V3.1

Score:
3.7
Severity:
LOW
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.