CVE-2025-12755 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

IBM MQ Operator (SC2 v3.2.0–3.8.1, LTS v2.0.0–2.0.29) and IBM‑supplied MQ Advanced container images (across affected SC2, CD, and LTS 9.3.x–9.4.x releases) cont…
Medium CVSS: 4.0

CVE-2025-12755

IBM MQ Operator (SC2 v3.2.0–3.8.1, LTS v2.0.0–2.0.29) and IBM‑supplied MQ Advanced container images (across affected SC2, CD, and LTS 9.3.x–9.4.x releases) contain a vulnerability where log messages are not properly neutralized before being written to log files. This flaw could allow an unauthorized user to inject malicious data into MQ log entries, potentially leading to misleading logs, log manipulation, or downstream log‑processing issues.
Vendor
-
Product
-
CWE
CWE-117
Yayın Tarihi
2026-02-17 19:21:54
Güncelleme
2026-02-18 17:52:22
Source Identifier
psirt@us.ibm.com
KEV Date Added
-

Kategoriler

CWE-117 MEDIUM 2026

Referanslar

https://www.ibm.com/support/pages/node/7260087