CVE-2021-38967 HIGH

CVE-2021-38967

Vendor Ibm
Product MQ Appliance
Published November 30, 2021
Last update September 17, 2024

CVSS base score

8.2/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/S:C/UI:N/A:H/C:H/AV:L/I:H/AC:L/PR:H/RC:C/E:U/RL:O

What the vulnerability does

01Description

IBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local privileged user to inject and execute malicious code. IBM X-Force ID: 212441.

Key dates

02Disclosure timeline

November 30, 2021 CVE published
September 17, 2024 Record updated