CVE-2024-25048
published 2024-04-27CVE-2024-25048: IBM MQ Appliance 9.3 CD and LTS are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could…
high7.5CVSS 3.1
AVNACHPRLUINSUCHIHAH
IBM MQ Appliance 9.3 CD and LTS are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash. IBM X-Force ID: 283137.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | mq_appliance | — | — |
| ibm | mq_appliance | >= 9.3.0.0 < 9.3.0.17 | 9.3.0.17 |
| ibm | mq_appliance | >= 9.3.0.0 < 9.3.5 | 9.3.5 |