CVE-2021-39034: High severity ibm websphere mq light vulnerability

Q: What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2021-39034.

Q: What is the severity rating of CVE-2021-39034?

The severity rating of CVE-2021-39034 is medium (5.3).

Q: What is the affected software for CVE-2021-39034?

The affected software for CVE-2021-39034 is IBM Disconnected Log Collector version v1.0 - v1.8.2.

Q: How can the vulnerability be exploited?

The vulnerability can be exploited through a denial of service attack caused by an issue within the channel process.

Q: Is there a fix available for CVE-2021-39034?

Yes, IBM has provided a fix for CVE-2021-39034. Please refer to the IBM support pages for more information.

Published Feb 14, 2022

Updated

IBM MQ 9.1 LTS is vulnerable to a denial of service attack caused by an issue within the channel process. IBM X-Force ID: 213964.

Other sources

IBM MQ is vulnerable to a denial of service attack caused by an issue within the channel process.

— IBM

Affected Software

3 affected components

IBM MQ<=9.1 LTS

IBM MQ>=9.1.0.0<=9.1.0.9

Oracle Solaris

Event History

Feb 14, 2022

CVE Published

via IBM·12:00 AM

Feb 17, 2022

CVE Published

via MITRE·04:30 PM

Data Sourced

via MITRE·04:30 PM

DescriptionSeverityWeakness

Parent advisories

This vulnerability appears in the following advisories.

IBM-6556466

Frequently Asked Questions

What is the vulnerability ID of this issue?

The vulnerability ID is CVE-2021-39034.

What is the severity rating of CVE-2021-39034?

The severity rating of CVE-2021-39034 is medium (5.3).

What is the affected software for CVE-2021-39034?