CVE-2023-33849

Summary

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could transmit sensitive information in query parameters that could be intercepted using man in the middle techniques. IBM X-Force ID: 257105.

Affected Software

VendorProductVersion RangeStatus
IBMTXSeries for Multiplatforms8.1, 8.2, 9.1affected
IBMCICS TX Standard11.1affected
IBMCICS TX Advanced10.1, 11.1affected

Weaknesses

  • CWE-311: CWE-311 Missing Encryption of Sensitive Data

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References