CVE-2018-1551
Description
IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 could allow users to have more authority than they should have if an MQ administrator creates an invalid user group name. IBM X-Force ID: 142888.
CWE
- (none)
Affected
- IBM / WebSphere MQ — v=8.0.0.2 [affected]; v=8.0.0.4 [affected]; v=8.0.0.3 [affected]; v=8.0.0.6 [affected]; v=8.0.0.5 [affected]; v=8.0.0.7 [affected]; v=8.0.0.8 [affected]; v=9.0.0.0 [affected]; v=9.0.0.1 [affected]; v=9.0.0.2 [affected]; v=9.0.0.3 [affected]
CVSS
- 3.0 score=3.1 severity=LOW
CVSS:3.0/A:N/AC:H/AV:N/C:N/I:L/PR:L/S:U/UI:N/E:U/RC:C/RL:O
References
- https://www.ibm.com/support/docview.wss?uid=ibm10716113 x_refsource_CONFIRM
- https://exchange.xforce.ibmcloud.com/vulnerabilities/142888 vdb-entry, x_refsource_XF
- http://www.securityfocus.com/bid/105040 vdb-entry, x_refsource_BID
Source
cvelistV5-main/cves/2018/1xxx/CVE-2018-1551.json