Description
IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441.
CVSS breakdown
CVSS 3.0
Scope
Changed
User Interaction
None
Availability
High
Confidentiality
High
Attack Vector
Local
Integrity
High
Attack Complexity
Low
Privileges Required
High
RC
Changed
E
Unchanged
RL
O
Affected products
- ibm / mq_appliance9.2.0.0 – 9.2.0.0
- ibm / mq_appliance9.2.1 – 9.2.1
- ibm / mq_appliance9.2.0.1 – 9.2.0.1
- ibm / mq_appliance9.2.2 – 9.2.2
- ibm / mq_appliance9.2.0.2 – 9.2.0.2
- ibm / mq_appliance9.2.0.3 – 9.2.0.3
- ibm / mq_appliance9.2.3 – 9.2.3