Security Advisory

CVE-2025-36100

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-09-07 00:37:00

Last updated 2025-10-09 16:22:51

Assigner ibm

State PUBLISHED

Description

IBM MQ LTS 9.1.0.0 through 9.1.0.29, 9.2.0.0 through 9.2.0.36, 9.3.0.0 through 9.3.0.30 and 9.4.0.0 through 9.4.0.12 and IBM MQ CD 9.3.0.0 through 9.3.5.1 and 9.4.0.0 through 9.4.3.0 Java and JMS stores a password in client configuration files when trace is enabled which can be read by a local user.

← Browse all CVEs View on cve.org ↗