Ibm

Cics Tx

46 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2025-1331

  • EPSS 0.03%
  • Published 08.05.2025 21:55:41
  • Last modified 05.06.2025 14:29:03

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to the use of unsafe use of the gets function.

7.8

CVE-2025-1330

  • EPSS 0.03%
  • Published 08.05.2025 21:54:42
  • Last modified 05.06.2025 14:29:17

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1  could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyname function.

7.8

CVE-2025-1329

  • EPSS 0.01%
  • Published 08.05.2025 21:53:48
  • Last modified 05.06.2025 14:30:37

IBM CICS TX Standard 11.1 and IBM CICS TX Advanced 10.1 and 11.1 could allow a local user to execute arbitrary code on the system due to failure to handle DNS return requests by the gethostbyaddr function.

6.1

CVE-2024-41746

  • EPSS 0.17%
  • Published 16.01.2025 18:15:22
  • Last modified 14.08.2025 17:15:34

IBM CICS TX Advanced 10.1, 11.1, and Standard 11.1 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credenti...

6.1

CVE-2024-41745

  • EPSS 0.45%
  • Published 01.11.2024 17:15:16
  • Last modified 14.11.2024 20:35:33

IBM CICS TX Standard is vulnerable to cross-site scripting. This vulnerability allows an unauthenticated attacker to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure ...

8.8

CVE-2024-41744

  • EPSS 0.07%
  • Published 01.11.2024 17:15:16
  • Last modified 18.06.2025 18:17:55

IBM CICS TX Standard 11.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts.

6.1

CVE-2023-38360

  • EPSS 0.08%
  • Published 04.03.2024 18:15:08
  • Last modified 07.01.2025 21:23:43

IBM CICS TX Advanced 10.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ...

5.3

CVE-2023-38362

  • EPSS 0.04%
  • Published 04.03.2024 16:15:49
  • Last modified 07.01.2025 21:24:06

IBM CICS TX Advanced 10.1 could disclose sensitive information to a remote attacker due to observable discrepancy in HTTP responses. IBM X-Force ID: 260814.

4.3

CVE-2022-34311

  • EPSS 0.03%
  • Published 12.02.2024 19:15:09
  • Last modified 21.11.2024 07:09:16

IBM CICS TX Standard and Advanced 11.1 could allow a user with physical access to the web browser to gain access to the user's session due to insufficiently protected credentials. IBM X-Force ID: 229446.

7.5

CVE-2022-34309

  • EPSS 0.03%
  • Published 12.02.2024 19:15:08
  • Last modified 21.11.2024 07:09:16

IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 229440.