Critical severity9.8NVD Advisory· Published Feb 15, 2017· Updated Jun 17, 2026
CVE-2016-0360
CVE-2016-0360
Description
IBM Websphere MQ JMS 7.0.1, 7.1, 7.5, 8.0, and 9.0 client provides classes that deserialize objects from untrusted sources which could allow a malicious user to execute arbitrary Java code by adding vulnerable classes to the classpath. IBM Reference #: 1983457.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
7cpe:2.3:a:ibm:websphere_mq_jms:7.0.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:ibm:websphere_mq_jms:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_mq_jms:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_mq_jms:7.5:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_mq_jms:8.0:*:*:*:*:*:*:*
- cpe:2.3:a:ibm:websphere_mq_jms:9.0:*:*:*:*:*:*:*
- (no CPE)range: 7.0.1, 7.1, 7.5, 8.0, and 9.0
- IBM Corporation/WebSphere MQv5Range: 7.0.1
Patches
Vulnerability mechanics
References
3- www-01.ibm.com/support/docview.wssnvdVendor Advisory
- www.securityfocus.com/bid/95317nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1037561nvd
News mentions
0No linked articles in our index yet.