We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-46176

IBM MQ privilege escalation



Description

IBM MQ Appliance 9.3 CD could allow a local attacker to gain elevated privileges on the system, caused by improper validation of security keys. IBM X-Force ID: 269535.

Reserved 2023-10-17 | Published 2023-11-03 | Updated 2024-09-04 | Assigner ibm


MEDIUM: 6.7CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-424 Improper Protection of Alternate Path

Product status

Default status
unaffected

9.3 CD
affected

References

www.ibm.com/support/pages/node/7060769 vendor-advisory

exchange.xforce.ibmcloud.com/vulnerabilities/269535 vdb-entry

cve.org (CVE-2023-46176)

nvd.nist.gov (CVE-2023-46176)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-46176

Support options

Helpdesk Chat, Email, Knowledgebase
Subscribe to our newsletter to learn more about our work.