CVE-2025-33013
published 2025-07-24CVE-2025-33013: IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, 3.6.0, and MQ Operator SC2 3.2.0…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, 3.6.0, and MQ Operator SC2 3.2.0 through 3.2.13 Container could disclose sensitive information to a local user due to improper clearing of heap memory before release.
Affected
35 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | mq_operator | — | — |
| ibm | mq_operator | — | — |
| ibm | mq_operator | — | — |
| ibm | mq_operator | — | — |
| ibm | mq_operator | — | — |
| ibm | mq_operator | 2.0.0 – 2.0.29 | — |
| ibm | mq_operator | 2.0.0 LTS – 2.0.29 LTS | — |
| ibm | mq_operator | 3.2.0 – 3.2.13 | — |
| ibm | mq_operator | 3.2.0 SC2 – 3.2.13 SC2 | — |
| ibm | mq_operator | 3.5.1 – 3.6.0 | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |
| ibm | supplied_mq_advanced_container_images | — | — |