CVE-2022-40232 — Vulnetix

CVE-2022-40232 PUBLISHED CVSS 6.5 MEDIUM

IBM MQ 8.0, 9.0 LTS, 9.1 LTS, 9.2 LTS, 9.1 CD, and 9.2 CD is vulnerable to a denial of service attack caused by an error processing messages. IBM X-Force ID: 208398.

EPSS 0.29% · 52.7th percentile

Risk Scores

CVSS v3.0

6.5

CVSS:3.0/I:N/AC:L/UI:N/PR:L/S:U/C:N/A:H/AV:N/E:U/RC:C/RL:O

EPSS Score

0.29%

52.7th percentile

Affected Products

Vendor	Product	Versions
IBM	MQ	8.0.0, 9.0.0, 9.1.0

Timeline

Feb 13, 2023 CVE Published
Feb 18, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Mar 29, 2023 EPSS Score
May 8, 2023 EPSS Score
Jun 16, 2023 EPSS Score
Jul 26, 2023 EPSS Score
Sep 3, 2023 EPSS Score
Oct 13, 2023 EPSS Score
Nov 21, 2023 EPSS Score
Dec 31, 2023 EPSS Score
Feb 8, 2024 EPSS Score

References

https://www.ibm.com/support/pages/node/6517672 url
ibm-mq-cve202138875-dos (208398) vdb

Open in Interactive Console →