CVE-2016-0360 in WebSphere MQinfo

Summary

IBM Websphere MQ JMS 7.0.1, 7.1, 7.5, 8.0, and 9.0 client provides classes that deserialize objects from untrusted sources which could allow a malicious user to execute arbitrary Java code by adding vulnerable classes to the classpath. IBM Reference #: 1983457.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/08/2015

Disclosure

02/15/2017

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-502

CVSS

8.4

EPSS

0.00962

CTI

0.00

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-0360
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-0360
CVE Details	https://www.cvedetails.com/cve/CVE-2016-0360/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!