CVE-2025-36100 | IBM MQ up to 9.4.3.0 CD Client Configuration password in configuration file (WID-SEC-2025-1980)

A vulnerability was found in IBM MQ up to 9.4.3.0 CD. It has been declared as problematic. Affected by this issue is some unknown functionality of the component Client Configuration Handler. The manipulation results in password in configuration file.

This vulnerability is identified as CVE-2025-36100. The attack is only possible with local access. There is not any exploit available.

It is advisable to upgrade the affected component.VulDB Recent EntriesRead More