User Impersonation Vulnerability in IBM CICS Transaction Server
CVE-2022-34164

5.9MEDIUM

Key Information:

Vendor

IBM
Status
Cics Tx Standard
Cics Tx Advanced
Vendor
CVE Published:
1 August 2022

What is CVE-2022-34164?

A vulnerability in IBM CICS Transaction Server 11.1 allows a local user to impersonate another legitimate user due to improper input validation. This weakness could potentially allow unauthorized actions to be taken by an attacker, posing a risk to system security and user data integrity. It is crucial for organizations using this product to implement the necessary security updates and safeguards.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

CICS TX Advanced 11.1

CICS TX Standard 11.1

References

https://www.ibm.com/support/pages/node/6608204
x_refsource_CONFIRM
https://www.ibm.com/support/pages/node/6608206
x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/229338
vdb-entryx_refsource_XF

CVSS V3.1

Score:
5.9
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.