#VU89108 Heap-based buffer overflow in IBM MQ Appliance - CVE-2024-25048

Cybersecurity Help s.r.o.

Published: 2024-05-02

Vulnerability identifier: #VU89108

Vulnerability risk: Low

CVSSv4.0: 5.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2024-25048

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
IBM MQ Appliance
Other software / Other software solutions

Vendor: IBM Corporation

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to improper bounds checking. A remote attacker can overflow a buffer and execute arbitrary code on the system or cause the server to crash.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

IBM MQ Appliance: All versions

External links
https://www.ibm.com/support/pages/node/7149481
https://exchange.xforce.ibmcloud.com/vulnerabilities/283137

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

IBM Sterling B2B Integrator update for IBM MQ

Multiple vulnerabilities in IBM System Storage Virtualization Engine TS7700

Multiple vulnerabilities in IBM Robotic Process Automation

Heap-based buffer overflow in IBM MQ Appliance

Multiple vulnerabilities in IBM WebSphere Remote Server

Heap-based buffer overflow in IBM MQ

Multiple vulnerabilities in IBM MQ Operator and Queue manager container images

Heap-based buffer overflow in IBM MQ for HPE NonStop