Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Txseries_for_multiplatforms
(Ibm)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 7 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2023-06-07 | CVE-2023-33848 | IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could allow a privileged user to obtain highly sensitive information by enabling debug mode. IBM X-Force ID: 257104. | Cics_tx, Txseries_for_multiplatforms | 6.5 | ||
| 2023-06-07 | CVE-2023-33849 | IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could transmit sensitive information in query parameters that could be intercepted using man in the middle techniques. IBM X-Force ID: 257105. | Cics_tx, Txseries_for_multiplatforms | 3.7 | ||
| 2023-10-25 | CVE-2023-42031 | IBM TXSeries for Multiplatforms, 8.1, 8.2, and 9.1, CICS TX Standard CICS TX Advanced 10.1 and 11.1 could allow a privileged user to cause a denial of service due to uncontrolled resource consumption. IBM X-Force ID: 266016. | Cics_tx, Txseries_for_multiplatforms | 4.9 | ||
| 2023-11-03 | CVE-2023-42027 | IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 266057. | Cics_tx, Txseries_for_multiplatforms | 8.8 | ||
| 2023-11-03 | CVE-2023-42029 | IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1 are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 266059. | Cics_tx, Txseries_for_multiplatforms | 5.4 | ||
| 2024-11-01 | CVE-2024-41738 | IBM TXSeries for Multiplatforms 10.1 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques. | Txseries_for_multiplatforms | 5.9 | ||
| 2024-11-01 | CVE-2024-41741 | IBM TXSeries for Multiplatforms 10.1 could allow an attacker to determine valid usernames due to an observable timing discrepancy which could be used in further attacks against the system. | Txseries_for_multiplatforms | 5.3 |