CVE-2024-40681 | IBM MQ Operator 2.0.26/3.2.4 Queue Manager privileges assignment (XFDB-297611)

Posted by Angelo Barbosa | Sep 7, 2024 | CVE

A vulnerability classified as critical has been found in IBM MQ Operator 2.0.26/3.2.4. Affected is an unknown function of the component Queue Manager. The manipulation leads to incorrect privilege assignment.

This vulnerability is traded as CVE-2024-40681. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-40681 | IBM MQ Operator 2.0.26/3.2.4 Queue Manager privileges assignment (XFDB-297611)

Related Posts

CVE-2024-26710 | Linux Kernel up to 6.1.78/6.6.17/6.7.5 KASAN Thread stack-based overflow (4297217bcf1f/4cc31fa07445/b29b16bd836a)

CVE-2023-20587 | AMD EPYC(TM) Embedded 9003 System Management Mode access control

CVE-2024-43398 | rexml Gem up to 3.3.5 on Ruby API Parser REXML::Document.new xml entity expansion

CVE-2024-37661 | TP-LINK TL-7DR5130 1.0.23 ICMP Redirect Message Remote Code Execution