CVE-2025-1331

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function...

CVE-2023-38360

IBM CICS TX Advanced 10.1 is vulnerable to cross-site scripting due to insufficient filtering/escaping of user-supplied data in the Web UI. This can allow an attacker to embed arbitrary JavaScript, potentially leading to credentials disclosure within a trusted session. Remediation/fix is availabl...

CVE-2023-43018

IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 266163...

CVE-2023-42029 IBM CICS TX cross-site scripting

IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials...

IBM CICS TX Cross-Site Scripting Vulnerability

IBM CICS TX is a comprehensive, single transaction runtime package from International Business Machines IBM. A cross-site scripting vulnerability exists in IBM CICS TX that stems from the presence of a cross-site scripting XSS vulnerability. Affected Products and Versions: IBM CICS TX Standard...

Security Bulletin: CVE-2023-28484 may affect IBM CICS TX Advanced 10.1

Summary CVE-2023-28484 may affect IBM CICS TX Advanced 10.1. IBM CICS TX Advanced 10.1 has addressed the applicable CVE. Vulnerability Details CVEID:CVE-2023-28484 DESCRIPTION: GNOME libxml2 is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in the...