CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36005

IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, 3.6.0, and MQ Operator SC2 3.2.0 through 3.2.13 Internet Pass-Thru could allow a malicious user to obtain sensitive information from another TLS session connection by the proxy to the same hostname and port due to improper certificate validation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.8%

CVSS Severity

CVSS v3 Score 5.9

References

https://www.ibm.com/support/pages/node/7240431

Products affected by CVE-2025-36005

Ibm » Mq Operator » Version: Any

cpe:2.3:a:ibm:mq_operator:*
Ibm » Mq Operator » Version: 2.0.10

cpe:2.3:a:ibm:mq_operator:2.0.10
Ibm » Mq Operator » Version: 2.0.11

cpe:2.3:a:ibm:mq_operator:2.0.11
Ibm » Mq Operator » Version: 2.0.12

cpe:2.3:a:ibm:mq_operator:2.0.12
Ibm » Mq Operator » Version: 2.0.13

cpe:2.3:a:ibm:mq_operator:2.0.13
Ibm » Mq Operator » Version: 2.0.14

cpe:2.3:a:ibm:mq_operator:2.0.14
Ibm » Mq Operator » Version: 2.0.15

cpe:2.3:a:ibm:mq_operator:2.0.15
Ibm » Mq Operator » Version: 2.0.16

cpe:2.3:a:ibm:mq_operator:2.0.16
Ibm » Mq Operator » Version: 2.0.17

cpe:2.3:a:ibm:mq_operator:2.0.17
Ibm » Mq Operator » Version: 2.0.18

cpe:2.3:a:ibm:mq_operator:2.0.18
Ibm » Mq Operator » Version: 2.0.19

cpe:2.3:a:ibm:mq_operator:2.0.19
Ibm » Mq Operator » Version: 2.0.20

cpe:2.3:a:ibm:mq_operator:2.0.20
Ibm » Mq Operator » Version: 2.0.21

cpe:2.3:a:ibm:mq_operator:2.0.21
Ibm » Mq Operator » Version: 2.0.22

cpe:2.3:a:ibm:mq_operator:2.0.22
Ibm » Mq Operator » Version: 2.0.23

cpe:2.3:a:ibm:mq_operator:2.0.23
Ibm » Mq Operator » Version: 2.0.24

cpe:2.3:a:ibm:mq_operator:2.0.24
Ibm » Mq Operator » Version: 2.0.5

cpe:2.3:a:ibm:mq_operator:2.0.5
Ibm » Mq Operator » Version: 2.0.6

cpe:2.3:a:ibm:mq_operator:2.0.6
Ibm » Mq Operator » Version: 2.0.7

cpe:2.3:a:ibm:mq_operator:2.0.7
Ibm » Mq Operator » Version: 2.0.8

cpe:2.3:a:ibm:mq_operator:2.0.8
Ibm » Mq Operator » Version: 2.0.9

cpe:2.3:a:ibm:mq_operator:2.0.9
Ibm » Mq Operator » Version: 3.3.0

cpe:2.3:a:ibm:mq_operator:3.3.0
Ibm » Mq Operator » Version: 3.4.0

cpe:2.3:a:ibm:mq_operator:3.4.0
Ibm » Mq Operator » Version: 3.4.1

cpe:2.3:a:ibm:mq_operator:3.4.1
Ibm » Mq Operator » Version: 3.5.0

cpe:2.3:a:ibm:mq_operator:3.5.0
Ibm » Mq Operator » Version: 3.5.1

cpe:2.3:a:ibm:mq_operator:3.5.1
Ibm » Mq Operator » Version: 3.5.3

cpe:2.3:a:ibm:mq_operator:3.5.3
Ibm » Mq Operator » Version: 3.6.0

cpe:2.3:a:ibm:mq_operator:3.6.0
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.10

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.10
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.11
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.15

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.15
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.16

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.16
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.17

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.20

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.20
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.21

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.21
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.25

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.25
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.3

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.3
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.4

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5
Ibm » Supplied Mq Advanced Container Images » Version: 9.3.0.6

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.6
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.0.10

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.10
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.11
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.5
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.0.6

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.6
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.0.7

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.7
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.1.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.1.0
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.1.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.1.1
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.2.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.2.0
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.2.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.2.1
Ibm » Supplied Mq Advanced Container Images » Version: 9.4.3.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-36005

Products

Pricing

Contact Us