IBM CICS TX Standard 11.1 Vulnerable to Cross-Site Request Forgery
CVE-2024-41744

8.8HIGH

Key Information:

Vendor: IBM
Status: Cics Tx Standard
Vendor: CVE Published:; 1 November 2024

What is CVE-2024-41744?

IBM CICS TX Standard 11.1 is susceptible to a cross-site request forgery vulnerability, which may allow attackers to perform unauthorized actions as a trusted user. This exploit can compromise the integrity of user interactions with the application, potentially leading to significant security breaches. Organizations using this product should implement security measures to mitigate the risk associated with CSRF attacks.

Affected Version(s)

CICS TX Standard 11.1

References

https://www.ibm.com/support/pages/node/7174576

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 1, 2024
Vulnerability Reserved
Jul 22, 2024