CVE-2018-1551

high

Description

IBM WebSphere MQ 8.0.0.2 through 8.0.0.8 and 9.0.0.0 through 9.0.0.3 could allow users to have more authority than they should have if an MQ administrator creates an invalid user group name. IBM X-Force ID: 142888.

References

https://www.ibm.com/support/docview.wss?uid=ibm10716113

https://exchange.xforce.ibmcloud.com/vulnerabilities/142888

http://www.securityfocus.com/bid/105040

Details

Source: Mitre, NVD

Published: 2018-08-06

Updated: 2019-10-09

Risk Information

CVSS v2

Base Score: 6

Vector: CVSS2#AV:N/AC:M/Au:S/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics