CVE-2026-0977

🗓️ 13 Mar 2026 20:11:00Reported by ibmType

CVE-2026-0977: IBM CICS Transaction Gateway 9.3 and 10.1 allow file transfer or viewing due to improper access controls.

Reporter	Title	Published	Views	Family All 9
ATTACKERKB	CVE-2026-0977	13 Mar 202620:11	–	attackerkb
CNNVD	IBM CICS Transaction Gateway for Multiplatforms 访问控制错误漏洞	16 Mar 202600:00	–	cnnvd
Cvelist	CVE-2026-0977 IBM CICS Transaction Gateway for Multiplatforms Information Disclosure	13 Mar 202620:11	–	cvelist
EUVD	EUVD-2026-12071	16 Mar 202615:30	–	euvd
IBM Security Bulletins	Security Bulletin: Unrestricted Internet Access/Outbound Connections vulnerability found in CICS Transaction Gateway for Multiplatforms container (CVE-2026-0977)	13 Mar 202611:20	–	ibm
NVD	CVE-2026-0977	16 Mar 202614:18	–	nvd
Positive Technologies	PT-2026-25371	13 Mar 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-0977	26 Mar 202615:06	–	redhatcve
Vulnrichment	CVE-2026-0977 IBM CICS Transaction Gateway for Multiplatforms Information Disclosure	13 Mar 202620:11	–	vulnrichment

NVD

Vulners

Node

ibm cics_transaction_gatewayMatch9.3multiplatforms

ibm cics_transaction_gatewayMatch10.1multiplatforms

[
  {
    "vendor": "IBM",
    "product": "CICS Transaction Gateway for Multiplatforms",
    "versions": [
      {
        "status": "affected",
        "version": "9.3"
      },
      {
        "status": "affected",
        "version": "10.1"
      }
    ],
    "defaultStatus": "unaffected",
    "cpes": [
      "cpe:2.3:a:ibm:cics_transaction_gateway:9.3:*:*:*:*:multiplatforms:*:*",
      "cpe:2.3:a:ibm:cics_transaction_gateway:10.1:*:*:*:*:multiplatforms:*:*"
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7263518

02 Apr 2026 14:08Current

5.8Medium risk

Vulners AI Score5.8

CVSS 3.15.1 - 7.1

EPSS0.00012

SSVC

CWE-284