Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.9
IBM MQ Appliance 9.4 Can Be Exploited by Malicious Users
CVE-2025-14456
Summary
The IBM MQ Appliance 9.4 is vulnerable to a security risk where an attacker with administrative access can gain unauthorized access to the system. This is a concern for organizations that rely on the MQ Appliance for secure communication and data transfer. To address this vulnerability, IBM recommends upgrading to a fixed version or applying the latest patch.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| ibm | mq_appliance | > 9.4.4.0 , <= 9.4.5.0 | – |
Original title
IBM MQ Appliance 9.4 CD through 9.4.4.0 to 9.4.4.1
Original description
IBM MQ Appliance 9.4 CD through 9.4.4.0 to 9.4.4.1
nvd CVSS3.1
5.9
Vulnerability type
CWE-327
Use of a Broken Cryptographic Algorithm
- https://www.ibm.com/support/pages/node/7260383 Vendor Advisory
Published: 3 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026