CVE-2024-52896

CVSS 3.1 Score 6.2 of 10 (medium)

Details

Published Dec 19, 2024

Updated: Jan 10, 2025

CWE ID 209

Summary

CVE-2024-52896 is a vulnerability affecting the IBM MQ 9.2 LTS, 9.3 LTS, 9.3 CD, 9.4 LTS, and 9.4 CD web console. If successfully exploited, this issue allows a remote attacker to gain access to sensitive information. This occurs when the console returns a detailed technical error message in response to specific requests. The vulnerability poses a significant risk to organizations using the affected IBM MQ versions and could result in unintended data exposure. It is recommended that organizations apply the necessary patches or updates as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

IBM MQ

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

GrayAlpha Uses Diverse Infection Vectors to Deploy PowerNet Loader and NetSupport RAT

Know What Matters

For Customers

For Partners