Medium Severity

IBM Security Bulletin: IBM MQ Appliance is affected by a UI message injection vulnerability (CVE-2018-1666)

Share this post:

IBM MQ Appliance has addressed the following UI message injection vulnerability.

CVE(s): CVE-2018-1666

Affected product(s) and affected version(s):

IBM MQ Appliance 8.0
Maintenance levels between 8.0.0.0 and 8.0.0.11

IBM MQ Appliance 9.1 Long Term Support (LTS) Release

Maintenance levels between 9.1.0.0 and 9.1.0.1

IBM MQ Appliance 9.1.x Continuous Delivery (CD) Release
Continuous delivery updates 9.1.1

Refer to the following reference URLs for remediation and additional vulnerability details:
Source Bulletin: http://www.ibm.com/support/docview.wss?uid=ibm10739241
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/144892

More stories

Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2021-20227)

Aug 2, 2021 8:04 pm EDT | Medium Severity

This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability. ...read more


Security Bulletin: A vulneraqbility in SQLite affects IBM Cloud Application Performance Managment R esponse Time Monitoring Agent (CVE-2021-20227)

Aug 2, 2021 8:00 pm EDT | Medium Severity

This flaw allows an attacker who is capable of running SQL queries locally on the SQLite database to cause a denial of service or possible code execution by triggering a use-after-free. The highest threat from this vulnerability is to system availability. ...read more


Security Bulletin: User Behavior Analytics application add on to IBM QRadar SIEM performs improper CSRF checking for some components ( CVE-2021-29757)

Jul 30, 2021 8:39 pm EDT | Medium Severity

User Behavior Analytics application add on to IBM QRadar SIEM performs improper CSRF checking for some components. ...read more