4.6

CVE-2008-1592

EPSS 0.06%
Veröffentlicht 31.03.2008 23:44:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

MQSeries 5.1 in IBM WebSphere MQ 5.1 through 5.3.1 on the HP NonStop and Tandem NSK platforms does not require mqm group membership for execution of administrative tasks, which allows local users to bypass intended access restrictions via the runmqsc program, related to "Pathway panels."

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Ibm ≫ Websphere Mq Version5.1

Hp ≫ Nonstop
Tandem Computers ≫ Tandem Operating System Versionnsk

Ibm ≫ Websphere Mq Version5.3

Hp ≫ Nonstop
Tandem Computers ≫ Tandem Operating System Versionnsk

Ibm ≫ Websphere Mq Version5.3.1

Hp ≫ Nonstop
Tandem Computers ≫ Tandem Operating System Versionnsk

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.168

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/29360

http://securitytracker.com/id?1019610

http://www-1.ibm.com/support/docview.wss?uid=swg21297035

Patch

http://www.securityfocus.com/bid/28235

http://www.vupen.com/english/advisories/2008/0869

https://nvd.nist.gov/vuln/detail/CVE-2008-1592

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2008-1592

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2008-1592

EUVD