INQ2-23-IBM Sterling B2B Integrator vulnerable to sensitive information exposure due to IBM MQ

Integration News

IBM Sterling B2B Integrator vulnerable to sensitive information
exposure due to IBM MQ

Vulnerability Details

CVEID: CVE-2022-42436
Description: IBM MQ 8.0.0, 9.0.0, 9.1.0, 9.2.0, 9.3.0 Managed File Transfer could allow a local user to obtain sensitive information from diagnostic files. IBM X-Force ID:238206
CVSS Base score: 4
CVSS Temporal Score: Click here.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)N/UI:N/S:U/C:N/I:H/A:N)

Affected Products and Versions

Remediation/Fixes

Workarounds and Mitigations

None. 

Klicken Sie auf die Schaltfläche unten, um diesen Newsletter im Pdf-Format herunterzuladen.