CVE-2021-38986

Summary

IBM MQ Appliance 9.2 CD and 9.2 LTS does not invalidate session after logout which could allow an authenticated user to impersonate another user on the system. IBM X-Force ID: 212942.

Affected Software

VendorProductVersion RangeStatus
IBMMQ Appliance9.2 LTSaffected
IBMMQ Appliance9.2 CDaffected

Weaknesses

  • Gain Privileges

ADP Enrichment

CVE Program Container

Additional References

References