Vulnerability Details : CVE-2008-1592
MQSeries 5.1 in IBM WebSphere MQ 5.1 through 5.3.1 on the HP NonStop and Tandem NSK platforms does not require mqm group membership for execution of administrative tasks, which allows local users to bypass intended access restrictions via the runmqsc program, related to "Pathway panels."
Products affected by CVE-2008-1592
- cpe:2.3:a:ibm:websphere_mq:5.3:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_mq:5.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_mq:5.3.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2008-1592
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2008-1592
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
4.6
|
MEDIUM | AV:L/AC:L/Au:N/C:P/I:P/A:P |
3.9
|
6.4
|
NIST |
CWE ids for CVE-2008-1592
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2008-1592
Jump to