CVE-2024-51470

MEDIUM

IBM MQ Appliance < 9.1.0.26 - Improper Condition Check

Title source: rule
STIX 2.1

Description

IBM MQ 9.1 LTS, 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD, IBM MQ Appliance 9.3 LTS, 9.3 CD, 9.4 LTS, and IBM MQ for HPE NonStop 8.1.0 through 8.1.0.25 could allow an authenticated user to cause a denial-of-service due to messages with improperly set values.

References (3)

Scores

CVSS v3 6.5
EPSS 0.0011
EPSS Percentile 29.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-754
Status published
Products (3)
ibm/mq_appliance 9.1.0.0 - 9.1.0.26
ibm/mq_appliance 9.4.0.0 - 9.4.0.7
ibm/mq_for_hpe_nonstop 8.1.0 - 8.1.0.26
Published Dec 18, 2024
Tracked Since Feb 18, 2026