Medium Severity

Security Bulletin: IBM MQ for HP NonStop Server is affected by vulnerability CVE-2022-22325

Share this post:

A queue manager trace may disclose a plaintext password flowing over an MQ channel. The issue is described by CVE-2022-22325

CVE(s): CVE-2022-22325

Affected product(s) and affected version(s):

Affected Product(s) Version(s)
IBM MQ for HPE NonStop 8.1.0

Refer to the following reference URLs for remediation and additional vulnerability details:  
Source Bulletin: https://www.ibm.com/support/pages/node/6585780
X-Force Database: https://exchange.xforce.ibmcloud.com/vulnerabilities/218853

More stories

Security Bulletin: IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting (CVE-2022-22436)

July 5, 2022 | Medium Severity

IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting. ...read more


Security Bulletin: IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting (CVE-2022-22435)

July 5, 2022 | Medium Severity

IBM Maximo Asset Management and the IBM Maximo Manage application in IBM Maximo Application Suite are vulnerable to cross-site scripting. ...read more


Security Bulletin: IBM Event Streams is vulnerable to arbitrary code execution due to the Fabric8 Kubernetes client (CVE-2021-4178)

July 5, 2022 | Medium Severity

There is a vulnerability in the Fabric8 Kubernetes client. The library is used by IBM Event Streams. ...read more