LokiBot Malware – Active IOCs
April 26, 2024Mirai Botnet aka Katana – Active IOCs
April 27, 2024LokiBot Malware – Active IOCs
April 26, 2024Mirai Botnet aka Katana – Active IOCs
April 27, 2024Severity
High
Analysis Summary
CVE-2024-25048
IBM MQ Appliance 9.3 CD and LTS are vulnerable to a heap-based buffer overflow, caused by improper bounds checking. A remote authenticated attacker could overflow a buffer and execute arbitrary code on the system or cause the server to crash.
Impact
- Gain Access
- Code Execution
Indicators of Compromise
CVE
- CVE-2024-25048
Affected Vendors
Affected Products
- IBM MQ Appliance 9.3.CD
- IBM MQ Appliance 9.3.LTS
Remediation
Refer to IBM Security Advisory for patch, upgrade or suggested workaround information.