Sign In

CVE-2024-39743

📊 5.9 MEDIUM0.2%🎯 0 exploits
📅 Published Jul 8, 2024
📋 Status: Modified

IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 IBM MQ Container Developer Edition is vulnerable to denial of service caused by incorrect memory de-allocation. A remote attacker could exploit this vulnerability to cause the server to consume memory resources. IBM X-Force ID: 297172.

🎯 Affected Products & Systems

8 product configurations affected

Filter by type:
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.0.0 ∧ < 2.0.24
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.2.0 ∧ ≤ 2.2.2
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.3.0 ∧ ≤ 2.3.3
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 2.4.0 ∧ ≤ 2.4.8
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 3.1.0 ∧ ≤ 3.1.3
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: ≥ 3.2.0 ∧ < 3.2.2
CPE:
cpe:2.3:a:ibm:mq_operator:*:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: 3.0.0
CPE:
cpe:2.3:a:ibm:mq_operator:3.0.0:*:*:*:*:*:*:*
📱
ibm / mq operator
Application
Vulnerable
Version: 3.0.1
CPE:
cpe:2.3:a:ibm:mq_operator:3.0.1:*:*:*:*:*:*:*
8 productsscroll for more
Metrics
5.9 MEDIUMCVSS v3.1[email protected]
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector:
NETWORK
Complexity:
HIGH
Privileges:
NONE
User Interaction:
NONE
Confidentiality:
NONE
Integrity:
NONE
Availability:
HIGH
Scope:
UNCHANGED

🔍 Technical Details

Analysis Status
Modified
CVSS Details
5.9 (MEDIUM)v3.1
Source: [email protected]
EPSS Details
0.2% (Minimal)45.2th percentile
Last updated: Oct 31, 2025
Exploitation probability within 30 days
Published Date
Jul 8, 2024 (1 year ago)
Last Modified
Nov 21, 2024 (11 months ago)
Security Weaknesses2
References3