CVE-2025-23225
published 2025-02-28CVE-2025-23225: IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user to cause a denial of service due to the improper handling of invalid headers sent…
medium6.5CVSS 3.1
AVNACLPRLUINSUCNINAH
IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user to cause a denial of service due to the improper handling of invalid headers sent to the queue.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | mq | — | — |
| ibm | mq_appliance | <= 9.4.2 | — |
| ibm | mq_appliance | 9.3.0.0 – 9.3.0.27 | — |
| ibm | mq_appliance | 9.4.0.0 – 9.4.0.10 | — |