Denial of Service Vulnerability in IBM WebSphere MQ
CVE-2016-8915

6.5MEDIUM

Key Information:

Vendor: IBM
Status: Websphere MQ
Vendor: CVE Published:; 22 February 2017

Summary

A denial of service vulnerability exists in IBM WebSphere MQ 8.0 that allows an authenticated user with access to the queue manager and queues to disrupt service for other channels running within the same process. This situation can lead to significant operational issues, as legitimate users may experience service interruptions. It is crucial for organizations utilizing this software to address potential risks and mitigate the impact of such vulnerabilities.

Affected Version(s)

WebSphere MQ 8.0

References

http://www.ibm.com/support/docview.wss?uid=swg21998649

x_refsource_CONFIRM

http://www.securityfocus.com/bid/96403

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 22, 2017
Vulnerability Reserved
Oct 25, 2016