IBM has released security updates to address Severe vulnerabilities in IBM MQ Messaging Middleware. Multiple issues were identified within the libcurl library that affect IBM MQ. IBM MQ server and non-Java client installations use libcurl to provide HTTPURL functionality which is used to download remote CCDT files.

For a complete description of the vulnerabilities and affected systems go to Security Bulletin: IBM MQ is vulnerable to issues with libcurl (CVE-2022-27780, CVE-2022-30115).

IT Security

Read more about IT Security service offerings.