Sign In

CVE-2024-40681

📊 7.5 HIGH0.0%🎯 0 exploits
📅 Published Sep 7, 2024
📋 Status: Analyzed

IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD could allow an authenticated user in a specifically defined role, to bypass security restrictions and execute actions against the queue manager.

🎯 Affected Products & Systems

100 product configurations affected

Filter by type:
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.0.0 ∧ ≤ 2.0.25
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:lts:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.2.0 ∧ ≤ 2.2.2
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:-:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.3.0 ∧ ≤ 2.3.3
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:-:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.4.0 ∧ ≤ 2.4.8
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:-:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 3.1.0 ∧ ≤ 3.1.3
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:cd:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 3.2.0 ∧ ≤ 3.2.3
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:sc2:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: 3.0.0
CPE:
cpe:2.3:a:ibm:mq_operator:3.0.0:*:*:*:cd:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: 3.0.1
CPE:
cpe:2.3:a:ibm:mq_operator:3.0.1:*:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.2.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.1:r1-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.1:r1-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.2:r1-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.2:r1-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.2:r2-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.2:r2-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.4
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.4:r1-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.4
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.4:r1-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.5:r1-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.5:r1-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.5:r2-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.5:r2-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.5:r3-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.5:r3-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.6:r1-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.6:r1-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.6:r2-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.6:r2-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.6:r3-eus:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.0.6:r3-eus:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.3.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.3.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.4.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.4.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.4.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.4.0:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.5.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.5.0:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.5.0:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.5.0:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.2.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.5.0:r3:*:*:-:*:*:*
📱
Vulnerable
Version: 9.2.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.2.5.0:r3:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r3:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r3:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r3:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r3:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r4:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r4:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.3
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.3:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.3
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.3:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.4
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.4
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.4
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.4
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.5
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r3:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.6:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.0.6
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.6:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.10
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.10:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.10
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.10:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.10
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.10:r3:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.11
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.11:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.11
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.11:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.15
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.15:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.16
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.16:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.16
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.16:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.17
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.17
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.17
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17:r3:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.20
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.20:r1:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.0.20
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.20:r2:*:*:lts:*:*:*
📱
Vulnerable
Version: 9.3.1.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.1.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.1.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.1.1:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.2.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.2.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.2.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.2.0:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.2.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.2.1:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.2.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.2.1:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.0:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.0:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.1:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.1:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.2:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.2:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.2
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.2:r3:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.3
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.3:r1:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.3.3
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.3.3:r2:*:*:-:*:*:*
📱
Vulnerable
Version: 9.3.4.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.4.0:r1:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.3.4.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.4.1:r1:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.3.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.5.0:r1:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.3.5.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.5.0:r2:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.3.5.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.5.1:r1:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.3.5.1
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.5.1:r2:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.4.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0:r1:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.4.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0:r2:*:*:cd:*:*:*
📱
Vulnerable
Version: 9.4.0.0
CPE:
cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0:r3:*:*:cd:*:*:*
100 productsscroll for more
Metrics
7.5 HIGHCVSS v3.1[email protected]
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector:
NETWORK
Complexity:
HIGH
Privileges:
LOW
User Interaction:
NONE
Confidentiality:
HIGH
Integrity:
HIGH
Availability:
HIGH
Scope:
UNCHANGED

🔍 Technical Details

Analysis Status
Analyzed
CVSS Details
7.5 (HIGH)v3.1
Source: [email protected]
EPSS Details
0.0% (Minimal)4.0th percentile
Last updated: Oct 31, 2025
Exploitation probability within 30 days
Published Date
Sep 7, 2024 (1 year ago)
Last Modified
Aug 15, 2025 (2 months ago)
Security Weaknesses2
References2