IBM MQ for HPE NonStop Server is affected by vulnerability CVE-2020-4319
CVEID:CVE-2020-4319
**DESCRIPTION:**IBM MQ, IBM MQ Appliance, and IBM MQ for HPE NonStop 8.0, 9.1 LTS, and 9.1 CD could allow under special circumstances, an authenticated user to obtain sensitive information due to a data leak from an error message within the pre-v7 pubsub logic. IBM X-Force ID: 177402.
CVSS Base score: 3.1
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/177402 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N)
Affected Product(s) | Version(s) |
---|---|
IBM MQ for HPE NonStop | 8.1.0 |
IBM MQ for HPE NonStop | 8.0.4 |
IBM MQ V8 for HPE NonStop | 8.1.0.6 | IT31787 | Install Fixpack 8.1.0.6 |
---|
None