Lucene search
IbmCVELIST:CVE-2020-4320HistoryJun 16, 2020 - 1:45 p.m.
CVE-2020-4320
2020-06-1613:45:21
ibm
www.cve.org
5
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
AI Score
7.7
Confidence
High
EPSS
0.001
Percentile
32.8%
IBM MQ Appliance and IBM MQ AMQP Channels 8.0, 9.0 LTS, 9.1 LTS, and 9.1 CD do not correctly block or allow clients based on the certificate distinguished name SSLPEER setting. IBM X-Force ID: 177403.
CNA Affected
[
{
"product": "MQ",
"vendor": "IBM",
"versions": [
{
"status": "affected",
"version": "8.0"
},
{
"status": "affected",
"version": "9.0.LTS"
},
{
"status": "affected",
"version": "9.1.LTS"
},
{
"status": "affected",
"version": "9.1.CD"
}
]
}
]Related
ibm
ibm
Security Bulletin: IBM MQ AMQP channels fail to block connections restricted by SSLPEER setting (CVE-2020-4320)
2020-06-26 15:53:18
Security Bulletin: IBM MQ AMQP channels fail to block connections restricted by SSLPEER setting (CVE-2020-4320)
2020-06-15 14:25:37
Security Bulletin: Multiple IBM MQ Vulnerabilities Affect IBM Control Center
2021-05-14 21:31:03
cve
cve
CVE-2020-4320
2020-06-16 14:15:11
prion
prion
Code injection
2020-06-16 14:15:00
nvd
nvd
CVE-2020-4320
2020-06-16 14:15:11
veracode
veracode
Insecure Access Control
2022-02-16 06:47:34
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C
AI Score
7.7
Confidence
High
EPSS
0.001
Percentile
32.8%
Related for CVELIST:CVE-2020-4320