Lucene search
IBM7490E22AB4A4A206B74C9BB88A8070184134BCE61C2373D8B1028745B8E1275BHistoryDec 13, 2021 - 3:22 p.m.
Security Bulletin: IBM MQ for HP NonStop Server is affected by vulnerability CVE-2021-38875
2021-12-1315:22:49
www.ibm.com
13
ibm mq
hpe nonstop
cve-2021-38875
denial of service
fixpack 8.1.0.9
EPSS
0.001
Percentile
32.8%
Summary
IBM MQ is vulnerable to a denial of service attack caused by an error processing messages. The issue is described by CVE-2021-38875.
Vulnerability Details
CVEID:CVE-2021-38875
**DESCRIPTION:**IBM MQ 8.0, 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.1 CD, and 9.2 CD is vulnerable to a denial of service attack caused by an error processing messages. IBM X-Force ID: 208398.
CVSS Base score: 6.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/208398 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM MQ for HPE NonStop | 8.1.0 |
| IBM MQ for HPE NonStop | 8.0.4 |
Remediation/Fixes
| IBM MQ V8.1 for HPE NonStop | 8.1.0.9 | IT38650 | Upgrade to Fixpack 8.1.0.9 |
|---|
Workarounds and Mitigations
None
Related
ibm
ibm
prion
prion
Denial of service
2021-11-23 20:15:00
cnvd
cnvd
IBM MQ Denial of Service Vulnerability (CNVD-2021-93631)
2021-11-24 00:00:00
cvelist
cvelist
CVE-2021-38875
2021-11-23 19:15:31
cve
cve
CVE-2021-38875
2021-11-23 20:15:11
nvd
nvd
CVE-2021-38875
2021-11-23 20:15:11
EPSS
0.001
Percentile
32.8%
Related for 7490E22AB4A4A206B74C9BB88A8070184134BCE61C2373D8B1028745B8E1275B