Ibm

Cics Tx

46 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2023-33846

  • EPSS 0.08%
  • Veröffentlicht 08.06.2023 01:15:09
  • Zuletzt bearbeitet 21.11.2024 08:06:03

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended ...

3.7

CVE-2023-33849

  • EPSS 0.05%
  • Veröffentlicht 07.06.2023 22:15:10
  • Zuletzt bearbeitet 21.11.2024 08:06:04

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could transmit sensitive information in query parameters that could be intercepted using man in the middle techniques. IBM X-Force ID: 257105.

6.5

CVE-2023-33848

  • EPSS 0.06%
  • Veröffentlicht 07.06.2023 21:15:13
  • Zuletzt bearbeitet 21.11.2024 08:06:04

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could allow a privileged user to obtain highly sensitive information by enabling debug mode. IBM X-Force ID: 257104.

6.1

CVE-2022-34318

  • EPSS 0.06%
  • Veröffentlicht 12.12.2022 13:15:12
  • Zuletzt bearbeitet 30.04.2025 15:15:53

IBM CICS TX 11.1 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly la...

7.5

CVE-2022-34320

  • EPSS 0.04%
  • Veröffentlicht 14.11.2022 20:15:11
  • Zuletzt bearbeitet 21.11.2024 07:09:17

IBM CICS TX 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 229464.

5.4

CVE-2022-34317

  • EPSS 0.13%
  • Veröffentlicht 14.11.2022 20:15:10
  • Zuletzt bearbeitet 21.11.2024 07:09:17

IBM CICS TX 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session....

5.3

CVE-2022-34316

  • EPSS 0.13%
  • Veröffentlicht 14.11.2022 19:15:13
  • Zuletzt bearbeitet 21.11.2024 07:09:17

IBM CICS TX 11.1 does not neutralize or incorrectly neutralizes web scripting syntax in HTTP headers that can be used by web browser components that can process raw headers. IBM X-Force ID: 229452.

5.4

CVE-2022-34315

  • EPSS 0.19%
  • Veröffentlicht 14.11.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 07:09:16

IBM CICS TX 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session....

3.3

CVE-2022-34314

  • EPSS 0.04%
  • Veröffentlicht 14.11.2022 19:15:12
  • Zuletzt bearbeitet 21.11.2024 07:09:16

IBM CICS TX 11.1 could disclose sensitive information to a local user due to insecure permission settings. IBM X-Force ID: 229450.

6.1

CVE-2022-38705

  • EPSS 0.04%
  • Veröffentlicht 14.11.2022 18:15:17
  • Zuletzt bearbeitet 21.11.2024 07:16:58

IBM CICS TX 11.1 Standard and Advanced could allow a remote attacker to bypass security restrictions, caused by a reverse tabnabbing flaw. An attacker could exploit this vulnerability and redirect a victim to a phishing site. IBM X-Force ID: 234172....