CVE-2015-2012 in WebSphere MQالمعلومات

الملخص

بحسب MITRE

The MQXR service in WMQ Telemetry in IBM WebSphere MQ 7.1 before 7.1.0.7, 7.5 through 7.5.0.5, and 8.0 before 8.0.0.4 uses world-readable permissions for a cleartext file containing the SSL keystore password, which allows local users to obtain sensitive information by reading this file.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

18/02/2015

إفشاء

08/02/2016

الاعتدال

تمت الموافقة

إدخال

VDB-80821

EPSS

0.00039

KEV

لا

النشاطات

منخفض جدًا

القطاع

Telecommunication, Government, ...

المصادر

MITREhttps://www.cve.org/CVERecord?id=CVE-2015-2012
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2015-2012
CVE Detailshttps://www.cvedetails.com/cve/CVE-2015-2012/

التالي نظرة عامة السابق

Do you know our Splunk app?

Download it now for free!