Data Leak Vulnerability in IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop

Data Leak Vulnerability in IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop

CVE-2020-4319 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop 8.0, 9.1 LTS, and 9.1 CD could allow under special circumstances, an authenticated user to obtain sensitive information due to a data leak from an error message within the pre-v7 pubsub logic. IBM X-Force ID: 177402.

Learn more about our User Device Pen Test.