New! Vulnerability Priority Rating (VPR)
Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.
VPR Score: 4.4
SynopsisA message queuing service installed on the remote host is affected by a denial of service vulnerability.
DescriptionAccording to its self-reported version, the IBM MQ server installed on the remote host is 7.1, 7.5, 8.0.0.x prior to 188.8.131.52, 9.0.x prior to 184.108.40.206, 9.1.0.x prior to 220.127.116.11, or 9.1.x prior to 9.1.5 and it is therefore affected by a denial of service (DoS) vulnerability. An authenticated, remote attacker can exploit this issue by overflowing a buffer in the channel processing code using an older client in order to crash the system.
SolutionInstall fix for APAR IT32141 or upgrade to IBM MQ 18.104.22.168, 22.214.171.124, 126.96.36.199, 9.1.5, or later.