Sensitive Information Disclosure in IBM CICS TX 11.1
CVE-2022-34314

4MEDIUM

Key Information:

Vendor
IBM
Status
Cics Tx
Vendor
CVE Published:
14 November 2022

Summary

A vulnerability exists in IBM CICS TX 11.1 that could enable a local user to access sensitive information due to improper permission settings. This weakness allows unauthorized access to data, compromising its confidentiality. Users of the affected version are advised to review their permission configurations and implement necessary security measures. For detailed guidance, refer to the IBM support resources.

Affected Version(s)

CICS TX 11.1

References

https://www.ibm.com/support/pages/node/6833170
vendor-advisory
https://www.ibm.com/support/pages/node/6833166
vendor-advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/229450
vdb-entry

CVSS V3.1

Score:
4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
None
Availability:
Low
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.