CVE Vulnerabilities

CVE-2018-1419

Published: Jun 15, 2018 | Modified: Oct 09, 2019
CVSS 3.x
5.3
MEDIUM
Source:
NVD
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
3.5 LOW
AV:N/AC:M/Au:S/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

IBM WebSphere MQ 8.0 and 9.0, when configured to use a PAM module for authentication, could allow a user to cause a deadlock in the IBM MQ PAM code which could result in a denial of service. IBM X-Force ID: 138949.

Affected Software

Name Vendor Start Version End Version
Websphere_mq Ibm 8.0 8.0
Websphere_mq Ibm 8.0.0.1 8.0.0.1
Websphere_mq Ibm 8.0.0.2 8.0.0.2
Websphere_mq Ibm 8.0.0.3 8.0.0.3
Websphere_mq Ibm 8.0.0.4 8.0.0.4
Websphere_mq Ibm 8.0.0.5 8.0.0.5
Websphere_mq Ibm 8.0.0.6 8.0.0.6
Websphere_mq Ibm 8.0.0.7 8.0.0.7
Websphere_mq Ibm 8.0.0.8 8.0.0.8
Websphere_mq Ibm 9.0 9.0
Websphere_mq Ibm 9.0.0.1 9.0.0.1
Websphere_mq Ibm 9.0.0.2 9.0.0.2
Websphere_mq Ibm 9.0.1 9.0.1
Websphere_mq Ibm 9.0.2 9.0.2
Websphere_mq Ibm 9.0.3 9.0.3
Websphere_mq Ibm 9.0.4 9.0.4

References