CVE-2009-0905

LOW

—CVSS v3

1.7CVSS v2

0.11% EPSS (exploit probability)

CWE-20CWE

Description

IBM WebSphere MQ 6.0 before 6.0.2.8 and 7.0 before 7.0.1.0 does not properly handle long group names, which might allow local users to gain privileges by leveraging combinations of group names with the same initial substring.

Affected routers (0)

No routers currently mapped to this CVE in our database.

External references

NIST NVD
MITRE CVE