Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.IBM_MQ_6985837.NASLHistoryMay 12, 2023 - 12:00 a.m.
IBM MQ Information Disclosure (6985837)
2023-05-1200:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26
ibm websphere mq
information disclosure
remote
vulnerability
advanced message security
ibm mq tracing logic
EPSS
0
Percentile
9.0%
The version of IBM MQ Server running on the remote host is affected by a vulnerability as referenced in the 6985837 advisory.
- When Advanced Message Security setup is enabled, there is an issue with IBM MQ tracing logic that means sensitive data can be captured while IBM MQ trace is running. (CVE-2023-28950)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(175407);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/06");
script_cve_id("CVE-2023-28950");
script_xref(name:"IAVA", value:"2023-A-0253-S");
script_name(english:"IBM MQ Information Disclosure (6985837)");
script_set_attribute(attribute:"synopsis", value:
"The remote web server is affected by an information disclosure vulnerability.");
script_set_attribute(attribute:"description", value:
"The version of IBM MQ Server running on the remote host is affected by a vulnerability as referenced in the 6985837
advisory.
- When Advanced Message Security setup is enabled, there is an issue with IBM MQ tracing logic that means
sensitive data can be captured while IBM MQ trace is running. (CVE-2023-28950)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://www.ibm.com/support/pages/node/6985837");
script_set_attribute(attribute:"see_also", value:"https://exchange.xforce.ibmcloud.com/vulnerabilities/251358");
script_set_attribute(attribute:"solution", value:
"Upgrade to 9.0.0.17 LTS, 9.1.0.15 LTS, 9.2.0.11 LTS, 9.3.0.5 LTS, 9.3.2.1 CD or later. Alternatively, install APAR IT43335 where
appropriate.");
script_set_attribute(attribute:"agent", value:"all");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-28950");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/04/26");
script_set_attribute(attribute:"patch_publication_date", value:"2023/04/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/05/12");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:websphere_mq");
script_set_attribute(attribute:"cpe", value:"cpe:/a:ibm:mq");
script_set_attribute(attribute:"stig_severity", value:"II");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Misc.");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ibm_mq_nix_installed.nbin", "websphere_mq_installed.nasl");
script_require_keys("installed_sw/IBM WebSphere MQ");
exit(0);
}
include('vcf.inc');
include('lists.inc');
var app = 'IBM WebSphere MQ';
var app_info = vcf::get_app_info(app:app);
if (app_info['Type'] != 'Server')
audit(AUDIT_HOST_NOT, 'an affected product');
var require_paranoia = FALSE;
var installed_components, vuln_components;
if (!empty_or_null(app_info.Components))
{
if (', ' >< app_info.Components)
installed_components = split(app_info.Components, sep:', ', keep:FALSE);
else
installed_components = split(app_info.Components, sep:';', keep:FALSE);
vuln_components = collib::intersection(installed_components, ['javamsg', 'ams', 'JMS', 'AMS']);
if (empty_or_null(vuln_components))
audit(AUDIT_HOST_NOT, 'running an affected component');
}
else
# Don't know what components are installed so require paranoia
require_paranoia = TRUE;
var constraints;
# check if CD - less than 4 version segments or non-0 3rd (M) segment
# https://www.ibm.com/support/pages/ibm-mq-faq-long-term-support-and-continuous-delivery-releases
if (app_info['version'] =~ "^9\.([0-9]+\.?){0,2}$" || app_info['version'] =~ "^9\.[0-9]\.[1-9]")
{
constraints = [
{ 'min_version' : '9.1', 'fixed_version' : '9.3.2.1' }
];
}
else
{
constraints = [
{ 'min_version' : '9.0', 'fixed_version' : '9.0.0.17' },
{ 'min_version' : '9.1', 'fixed_version' : '9.1.0.15' },
{ 'min_version' : '9.2', 'fixed_version' : '9.2.0.11' },
{ 'min_version' : '9.3', 'fixed_version' : '9.3.0.5' }
];
}
vcf::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_WARNING,
require_paranoia:require_paranoia
);
Related
nvd
nvd
CVE-2023-28950
2023-05-19 16:15:14
cvelist
cvelist
CVE-2023-28950 IBM MQ information disclosure
2023-05-19 15:20:50
veracode
veracode
Information Disclosure
2023-05-26 10:22:41
cve
cve
CVE-2023-28950
2023-05-19 16:15:14
prion
prion
Design/Logic Flaw
2023-05-19 16:15:00
ibm
ibm