CVE-2024-39742

CRITICAL Year: 2024
CVSS v3 Score
9.8
Critical
Weakness Type
CWE-187
View all →

Vulnerability Description

IBM MQ Operator 3.2.2 and IBM MQ Operator 2.0.24 could allow a user to bypass authentication under certain configurations due to a partial string comparison vulnerability. IBM X-Force ID: 297169.

Related Vulnerabilities

CVE-2022-31802

CRITICAL
CVSS:9.8(Critical)

In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform authentication by ...

CWE-1872022

CVE-2024-41110

CRITICAL
CVSS:9.9(Critical)

Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass...

CWE-1872024

CVE-2024-41110

CRITICAL
CVSS:9.9(Critical)

Moby is an open-source project created by Docker for software containerization. A security vulnerability has been detected in certain versions of Docker Engine, which could allow an attacker to bypass...

CWE-1872024

CVE-2022-31802

CRITICAL
CVSS:9.8(Critical)

In CODESYS Gateway Server V2 for versions prior to V2.3.9.38 only a part of the the specified password is been compared to the real CODESYS Gateway password. An attacker may perform authentication by ...

CWE-1872022

CVE-2025-23384

MEDIUM
CVSS:3.7(Low)

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2.1), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2.1), SCALANCE M80...

CWE-1872025