CVE-2023-46176

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Nov 3, 2023
Updated: Nov 9, 2023
CWE ID 424

Summary

CVE-2023-46176 is a vulnerability affecting IBM MQ Appliance 9.3 CD. A local attacker can exploit this issue by bypassing the security key validation process, permitting them to obtain elevated privileges on the system. IBM X-Force has assigned this vulnerability the ID 269535. This flaw poses a significant risk, as it allows unauthorized access to system resources and could result in major data breaches or system compromise. IBM urges all users to promptly apply the recommended patch or update to mitigate this vulnerability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • IBM MQ Appliance

Affected Vendors

  • IBM Corporation