- Description
- IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD reveals potentially sensitive information in trace files that could be read by a local user when webconsole trace is enabled.
- Source
- psirt@us.ibm.com
- NVD status
- Analyzed
- Products
- mq_appliance
CVSS 3.1
- Type
- Primary
- Base score
- 4.7
- Impact score
- 3.6
- Exploitability score
- 1
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N
- Severity
- MEDIUM
- psirt@us.ibm.com
- CWE-1323
- Hype score
- Not currently trending
🚨 CVE-2024-54173 🟠 MEDIUM (4.7) 🏢 IBM - MQ 🏗️ 9.3 LTS, 9.3 CD, 9.4 LTS, 9.4 CD 🔗 https://t.co/JlU0uAwNbw #CyberCron #VulnAlert https://t.co/4fnSvkllIp
@cybercronai
1 Mar 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-54173 IBM MQ 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD reveals potentially sensitive information in trace files that could be read by a local user when webconsole trace is enabl… https://t.co/QbzSOAG9QQ
@CVEnew
28 Feb 2025
89 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:mq_appliance:*:*:*:*:continuous_delivery:*:*:*",
"matchCriteriaId": "55660FDA-F75A-4E16-B669-460A7AE0257D",
"versionEndExcluding": "9.4.2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ibm:mq_appliance:*:*:*:*:lts:*:*:*",
"matchCriteriaId": "ADBA5611-3469-4892-9634-CDF2B50C07A0",
"versionEndExcluding": "9.3.0.27",
"versionStartIncluding": "9.3.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ibm:mq_appliance:*:*:*:*:lts:*:*:*",
"matchCriteriaId": "83CB7333-6E78-431C-AEE1-AB60FEB0425F",
"versionEndExcluding": "9.4.0.10",
"versionStartIncluding": "9.4.0.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
]