Cics Tx Security Vulnerabilities and Issues — Cics Tx CVE List

Lucene search

IbmCics Tx

12 matches found

CVE•added 2022/07/08 5:15 p.m.•92 views

CVE-2022-34160

IBM CICS TX Standard and Advanced 11.1 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 229330.

5.8CVSS5.5AI score0.00299EPSS

CVE•added 2022/07/08 5:15 p.m.•74 views

CVE-2022-34306

IBM CICS TX Standard and Advanced 11.1 is vulnerable to HTTP header injection, caused by improper validation of input by the HOST headers. This could allow an attacker to conduct various attacks against the vulnerable system, including cross-site scripting, cache poisoning or session hijacking. IBM...

5.5CVSS5.3AI score0.00414EPSS

CVE•added 2024/03/04 4:15 p.m.•70 views

CVE-2023-38362

IBM CICS TX Advanced 10.1 could disclose sensitive information to a remote attacker due to observable discrepancy in HTTP responses. IBM X-Force ID: 260814.

5.3CVSS4.9AI score0.00043EPSS

CVE•added 2022/07/08 5:15 p.m.•67 views

CVE-2022-34166

IBM CICS TX Standard and Advanced 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 229430.

5.4CVSS5.2AI score0.00428EPSS

CVE•added 2022/08/01 4:15 p.m.•62 views

CVE-2022-34164

IBM CICS TX 11.1 could allow a local user to impersonate another legitimate user due to improper input validation. IBM X-Force ID: 229338.

5.9CVSS5.2AI score0.00118EPSS

CVE•added 2022/07/08 5:15 p.m.•57 views

CVE-2022-34167

IBM CICS TX Standard and Advanced 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 2294...

5.4CVSS5.1AI score0.00277EPSS

CVE•added 2023/06/08 1:15 a.m.•56 views

CVE-2023-33846

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials ...

5.4CVSS5.2AI score0.00076EPSS

CVE•added 2022/11/14 6:15 p.m.•51 views

CVE-2022-34329

IBM CICS TX 11.7 could allow an attacker to obtain sensitive information from HTTP response headers. IBM X-Force ID: 229467.

5.3CVSS4.9AI score0.00092EPSS

CVE•added 2022/11/14 8:15 p.m.•48 views

CVE-2022-34317

IBM CICS TX 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 229459.

5.4CVSS5.2AI score0.00129EPSS

CVE•added 2023/11/03 12:15 a.m.•48 views

CVE-2023-42029

IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosu...

5.4CVSS5.2AI score0.00059EPSS

CVE•added 2022/11/14 7:15 p.m.•47 views

CVE-2022-34316

IBM CICS TX 11.1 does not neutralize or incorrectly neutralizes web scripting syntax in HTTP headers that can be used by web browser components that can process raw headers. IBM X-Force ID: 229452.

5.3CVSS4.5AI score0.00092EPSS

CVE•added 2022/11/14 7:15 p.m.•46 views

CVE-2022-34315

5.4CVSS5.2AI score0.00189EPSS