Authentication Credentials at Risk of Interception and Retrieval
CVE-2024-22345

7.5HIGH

Key Information:

Vendor: IBM
Status: Txseries For Multiplatforms
Vendor: CVE Published:; 14 May 2024

Summary

IBM TXSeries for Multiplatforms 8.2 has a vulnerability that involves the insecure transmission and storage of authentication credentials. This flaw allows for unauthorized interception and retrieval of sensitive data, posing a risk to the confidentiality and integrity of user credentials. The lack of secure handling for sensitive information can lead to various forms of cyberattacks, making it crucial for organizations using this product to assess their security posture and implement necessary mitigations to protect against potential exploits.

Affected Version(s)

TXSeries for Multiplatforms 8.2

References

https://www.ibm.com/support/pages/node/7150667

vendor-advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/280192

vdb-entry

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 14, 2024
Vulnerability Reserved
Jan 8, 2024