PT-2025-9047 · Ibm · Ibm Mq
Published
2025-02-28
·
Updated
2025-02-28
·
CVE-2024-54173
CVSS v3.1
4.7
Medium
| Vector | AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
IBM MQ versions 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD
Description
The issue allows potentially sensitive information in trace files to be read by a local user when the web console trace is enabled.
Recommendations
For IBM MQ versions 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD, disable the web console trace to prevent sensitive information from being exposed in trace files.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Mq