Cics Tx@11.1 Security Vulnerabilities and Issues — Cics Tx@11.1 CVE List

Lucene search

IbmCics Tx11.1

9 matches found

CVE•added 2023/08/22 9:15 p.m.•168 views

CVE-2023-33850

IBM GSKit-Crypto could allow a remote attacker to obtain sensitive information, caused by a timing-based side channel in the RSA Decryption implementation. By sending an overly large number of trial messages for decryption, an attacker could exploit this vulnerability to obtain sensitive informatio...

7.5CVSS7.4AI score0.00034EPSS

CVE•added 2023/11/03 12:15 a.m.•84 views

CVE-2023-42027

IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 266057.

8.8CVSS6.4AI score0.0004EPSS

CVE•added 2023/06/08 1:15 a.m.•60 views

CVE-2023-33847

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site ...

3.7CVSS3.4AI score0.00066EPSS

CVE•added 2023/06/08 1:15 a.m.•56 views

CVE-2023-33846

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials ...

5.4CVSS5.2AI score0.00076EPSS

CVE•added 2023/06/07 9:15 p.m.•51 views

CVE-2023-33848

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could allow a privileged user to obtain highly sensitive information by enabling debug mode. IBM X-Force ID: 257104.

6.5CVSS5.3AI score0.00055EPSS

CVE•added 2023/10/25 6:17 p.m.•49 views

CVE-2023-42031

IBM TXSeries for Multiplatforms, 8.1, 8.2, and 9.1, CICS TX Standard CICS TX Advanced 10.1 and 11.1 could allow a privileged user to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 266016.

4.9CVSS4.9AI score0.00092EPSS

CVE•added 2023/11/03 12:15 a.m.•48 views

CVE-2023-42029

IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosu...

5.4CVSS5.2AI score0.00059EPSS

CVE•added 2023/11/03 12:15 a.m.•47 views

CVE-2023-43018

IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 266163.

7.5CVSS6.5AI score0.00037EPSS

CVE•added 2023/06/07 10:15 p.m.•44 views

CVE-2023-33849

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could transmit sensitive information in query parameters that could be intercepted using man in the middle techniques. IBM X-Force ID: 257105.

3.7CVSS3.7AI score0.00046EPSS