CVE-2024-56476

Summary

IBM TXSeries for Multiplatforms 9.1 and 11.1 could allow an attacker to enumerate usernames due to an observable login attempt response discrepancy.

Affected Software

VendorProductVersion RangeStatus
IBMTXSeries for Multiplatforms9.1affected
IBMTXSeries for Multiplatforms11.1affected

Weaknesses

  • CWE-204: CWE-204 Response Discrepancy Information Exposure

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References