CVE-2025-33013

Name of the Vulnerable Software and Affected Versions IBM MQ Operator versions 2.0.0 through 2.0.29 IBM MQ Operator versions 3.0.0 through 3.1.3 IBM MQ Operator versions 3.2.0 through 3.2.13 IBM MQ Operator versions 3.3.0 IBM MQ Operator versions 3.4.0 through 3.4.1 IBM MQ Operator versions 3.5.0 through 3.5.1 IBM MQ Operator version 3.6.0

Description The software could disclose sensitive information to a local user due to improper clearing of heap memory before release.

Recommendations IBM MQ Operator versions prior to 2.0.29 should be updated. IBM MQ Operator versions 3.0.0 through 3.1.3 should be updated. IBM MQ Operator versions 3.2.0 through 3.2.13 should be updated. IBM MQ Operator version 3.3.0 should be updated. IBM MQ Operator versions 3.4.0 through 3.4.1 should be updated. IBM MQ Operator versions 3.5.0 through 3.5.1 should be updated. IBM MQ Operator version 3.6.0 should be updated.