CVE-2023-24538 may affect IBM CICS TX Standard. IBM CICS TX Standard has addressed the applicable CVE.
CVEID:CVE-2023-24538
**DESCRIPTION:**Golang Go could allow a remote attacker to execute arbitrary code on the system, caused by not properly consider backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVSS Base score: 9.8
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/252178 for the current score.
CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
Affected Product | Version |
---|---|
IBM CICS TX Standard | 11.1 |
Product
|
Version
|
Remediation/First Fix
—|—|—
IBM CICS TX Standard
|
11.1
|
None