CVE-2025-33013 | ByteOS Network

Vulnerability Details :

CVE-2025-33013

Assigner-ibm

Assigner Org ID-9a959283-ebb5-44b6-b705-dcc2bbced522

Published At-24 Jul, 2025 | 14:55

Updated At-18 Aug, 2025 | 01:27

IBM MQ Operator information disclosure

IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, 3.6.0, and MQ Operator SC2 3.2.0 through 3.2.13 Container could disclose sensitive information to a local user due to improper clearing of heap memory before release.

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:ibm

Assigner Org ID:9a959283-ebb5-44b6-b705-dcc2bbced522

Published At:24 Jul, 2025 | 14:55

Updated At:18 Aug, 2025 | 01:27

▼CVE Numbering Authority (CNA)

IBM MQ Operator information disclosure

IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, 3.6.0, and MQ Operator SC2 3.2.0 through 3.2.13 Container could disclose sensitive information to a local user due to improper clearing of heap memory before release.

Affected Products

Vendor

IBM Corporation

Product

CPEs

cpe:2.3:a:ibm:mq_operator:2.0.0:*:*:*:lts:*:*:*
cpe:2.3:a:ibm:mq_operator:2.0.29:*:*:*:lts:*:*:*

Default Status

unaffected

Versions

Affected

From 2.0.0 LTS through 2.0.29 LTS (semver)

Vendor

IBM Corporation

Product

CPEs

cpe:2.3:a:ibm:mq_operator:3.0.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.0.1:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.1.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.1.3:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.3.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.4.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.4.1:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.5.0:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.5.1:*:*:*:continuous_delivery:*:*:*
cpe:2.3:a:ibm:mq_operator:3.6.0:*:*:*:continuous_delivery:*:*:*

Default Status

unaffected

Versions

Affected

3.0.0, 3.0.1, 3.1.0, 3.1.3, 3.4.0, 3.5.0, 3.5.1, 3.6.0 CD

Vendor

IBM Corporation

Product

CPEs

cpe:2.3:a:ibm:mq_operator:3.2.0:*:*:*:support_cycle_2:*:*:*
cpe:2.3:a:ibm:mq_operator:3.2.13:*:*:*:support_cycle_2:*:*:*

Default Status

unaffected

Versions

Affected

From 3.2.0 SC2 through 3.2.13 SC2 (semver)

Problem Types

Type	CWE ID	Description
CWE	CWE-244	CWE-244 Improper Clearing of Heap Memory Before Release ('Heap Inspection')

Type: CWE

CWE ID: CWE-244

Description: CWE-244 Improper Clearing of Heap Memory Before Release ('Heap Inspection')

Metrics

Version	Base score	Base severity	Vector
3.1	6.2	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Version: 3.1

Base score: 6.2

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Solutions

Issues mentioned by this security bulletin are addressed in - IBM MQ Operator v3.6.1 CD release that included IBM supplied MQ Advanced 9.4.3.0-r2 container image. IBM MQ Operator v3.2.14 SC2 release that included IBM supplied MQ Advanced 9.4.0.12-r1 container image. IBM MQ Container 9.4.3.0-r2 release. IBM strongly recommends applying the latest container images. IBM MQ Operator v3.6.1 CD release details: ibm-mq-operator v3.6.1 icr.io icr.io/cpopen/ibm-mq-operator@sha256:b1bbebeb361e9e59311684da233c7d5978ffe17a78feb03eeb2411df9a0f5d03 ibm-mqadvanced-server 9.4.3.0-r2 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server@sha256:5bd01da84348f4ffb8b96427b6b8a4c471e63153f13e912315c3e7c9b3fffa8d ibm-mqadvanced-server-integration 9.4.3.0-r2 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:534c801a22338398bfb61ae443eeb6ba84152f0fad5538e212eefab1498336ed ibm-mqadvanced-server-dev 9.4.3.0-r2 icr.io icr.io/ibm-messaging/ibm-mqadvanced-server-dev@sha256:c2166a034f620d7479741342255968fe4076e8ce0bf45f1d67705ff1635146d5 IBM MQ Operator v3.2.14 SC2 release details: ibm-mq-operator v3.2.14 icr.io icr.io/cpopen/ibm-mq-operator@sha256:3979ba0bc28b6302f453633d3d238323c52679550760803d503ca51073c98cbf ibm-mqadvanced-server 9.4.0.12-r1 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server@sha256:222c1500565d08d6ab4dff9c7d550ce9e12909735e699882b79632ebe00dd61d ibm-mqadvanced-server-integration 9.4.0.12-r1 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server-integration@sha256:762f4f5e04c682f9ce39d6e189999fb505e373a60791f5a91fc413e4a72be014 ibm-mqadvanced-server-dev 9.4.0.12-r1 icr.io icr.io/ibm-messaging/ibm-mqadvanced-server-dev@sha256:2d5fa97b1e7f4d3d27c9afa963876172dc634ac861e3a5c5cb1cbf1e81252e15 IBM MQ Container 9.4.3.0-r2 release details: ibm-mqadvanced-server 9.4.3.0-r2 cp.icr.io cp.icr.io/cp/ibm-mqadvanced-server@sha256:5bd01da84348f4ffb8b96427b6b8a4c471e63153f13e912315c3e7c9b3fffa8d ibm-mqadvanced-server-dev 9.4.3.0-r2 icr.io icr.io/ibm-messaging/ibm-mqadvanced-server-dev@sha256:c2166a034f620d7479741342255968fe4076e8ce0bf45f1d67705ff1635146d5

References

Hyperlink	Resource
https://www.ibm.com/support/pages/node/7240431	vendor-advisory patch

Hyperlink: https://www.ibm.com/support/pages/node/7240431

Resource:

vendor-advisory

patch

▼Authorized Data Publishers (ADP)

CISA ADP Vulnrichment

Metrics Other Info

▼National Vulnerability Database (NVD)

Source:psirt@us.ibm.com

Published At:24 Jul, 2025 | 15:15

Updated At:22 Aug, 2025 | 18:10

IBM MQ Operator LTS 2.0.0 through 2.0.29, MQ Operator CD 3.0.0, 3.0.1, 3.1.0 through 3.1.3, 3.3.0, 3.4.0, 3.4.1, 3.5.0, 3.5.1, 3.6.0, and MQ Operator SC2 3.2.0 through 3.2.13 Container could disclose sensitive information to a local user due to improper clearing of heap memory before release.

Metrics

Type	Version	Base score	Base severity	Vector
Secondary	3.1	6.2	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Primary	3.1	5.5	MEDIUM	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Type: Secondary

Version: 3.1

Base score: 6.2

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Type: Primary

Version: 3.1

Base score: 5.5

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CPE Matches

IBM Corporation

>>mq_operator>>Versions from 2.0.0(inclusive) to 2.0.29(inclusive)

cpe:2.3:a:ibm:mq_operator:*:*:*:*:lts:*:*:*

IBM Corporation

>>mq_operator>>Versions from 3.2.0(inclusive) to 3.2.13(inclusive)

cpe:2.3:a:ibm:mq_operator:*:*:*:*:sc2:*:*:*

IBM Corporation

>>mq_operator>>Versions from 3.5.1(inclusive) to 3.6.0(inclusive)

cpe:2.3:a:ibm:mq_operator:*:*:*:*:cd:*:*:*

IBM Corporation

>>mq_operator>>3.3.0

cpe:2.3:a:ibm:mq_operator:3.3.0:*:*:*:cd:*:*:*

IBM Corporation

>>mq_operator>>3.4.0

cpe:2.3:a:ibm:mq_operator:3.4.0:*:*:*:cd:*:*:*

IBM Corporation

>>mq_operator>>3.4.1

cpe:2.3:a:ibm:mq_operator:3.4.1:*:*:*:cd:*:*:*

IBM Corporation

>>mq_operator>>3.5.0

cpe:2.3:a:ibm:mq_operator:3.5.0:*:*:*:cd:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.0:r3:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r3:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.1

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.1:r4:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.3

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.3:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.4

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.4

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.4:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.5:r3:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.6

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.6:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.10

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.10:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.10

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.10:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.11:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.11:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.15

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.15:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.16

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.16:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.16

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.16:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.17

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.17

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.17

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.17:r3:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.20

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.20:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.20

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.20:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.21

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.21:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.21

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.21:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.21

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.21:r3:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.3.0.25

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.3.0.25:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.0

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.0:r3:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.5:r1:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.5

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.5:r2:*:*:lts:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.6

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.6:r1:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.6

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.6:r2:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.7

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.7:r1:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.10

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.10:r1:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.10

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.10:r2:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.11:r1:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.11:r2:*:*:sc2:*:*:*

IBM Corporation

>>supplied_mq_advanced_container_images>>9.4.0.11

cpe:2.3:a:ibm:supplied_mq_advanced_container_images:9.4.0.11:r3:*:*:sc2:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-244	Primary	psirt@us.ibm.com
CWE-212	Primary	nvd@nist.gov

CWE ID: CWE-244

Type: Primary

Source: psirt@us.ibm.com

CWE ID: CWE-212

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.ibm.com/support/pages/node/7240431	psirt@us.ibm.com	Vendor Advisory

Hyperlink: https://www.ibm.com/support/pages/node/7240431

Source: psirt@us.ibm.com

Resource:

Vendor Advisory