CVE-2015-1967 in WebSphere MQinfo

Summary

MQ Explorer in IBM WebSphere MQ before 8.0.0.3 does not recognize the absence of the compatibility-mode option, which allows remote attackers to obtain sensitive information by sniffing the network for a session in which TLS is not used.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

02/19/2015

Disclosure

07/01/2015

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

5.6

EPSS

0.00207

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-1967
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-1967
CVE Details	https://www.cvedetails.com/cve/CVE-2015-1967/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!