CVE-2023-46176

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 3, 2023

Updated: Nov 9, 2023

CWE ID 424

Summary

CVE-2023-46176 is a vulnerability affecting IBM MQ Appliance 9.3 CD. A local attacker can exploit this issue by bypassing the security key validation process, permitting them to obtain elevated privileges on the system. IBM X-Force has assigned this vulnerability the ID 269535. This flaw poses a significant risk, as it allows unauthorized access to system resources and could result in major data breaches or system compromise. IBM urges all users to promptly apply the recommended patch or update to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM MQ Appliance

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/tDE9OE
https://www.cve.org/CVERecord?id=CVE-2023-46176
https://nvd.nist.gov/vuln/detail/CVE-2023-46176

Back to Vulnerability Database