Cross-Site Scripting Vulnerability in CICS TX Advanced 10.1 Could Lead to Credentials Disclosure
CVE-2023-38360
6.1MEDIUM
What is CVE-2023-38360?
IBM CICS TX Advanced 10.1 is susceptible to a cross-site scripting (XSS) vulnerability, allowing adversaries to inject arbitrary JavaScript code through the Web UI. This exploitation could disrupt the application’s intended operations and potentially expose user credentials during a trusted session. Users should assess their security posture and consider immediate mitigation strategies to safeguard sensitive data.
Affected Version(s)
CICS TX Advanced 10.1