CVE-2024-40681
published 2024-09-07CVE-2024-40681: IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user in a specifically defined role, to bypass security restrictions…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user in a specifically defined role, to bypass security restrictions and execute actions against the queue manager.
Affected
42 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | mq | — | — |
| ibm | mq_operator | — | — |
| ibm | mq_operator | — | — |
| ibm | mq_operator | 2.0.0 – 2.0.25 | — |
| ibm | mq_operator | 2.2.0 – 2.2.2 | — |
| ibm | mq_operator | 2.3.0 – 2.3.3 | — |
| ibm | mq_operator | 2.4.0 – 2.4.8 | — |
| ibm | mq_operator | 3.1.0 – 3.1.3 | — |
| ibm | mq_operator | 3.2.0 – 3.2.3 | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |