Denial of Service Vulnerability in IBM InfoSphere Data Replication for z/OS
CVE-2024-56468

7.5HIGH

Key Information:

Vendor: IBM
Status: Infosphere Data Replication Vsam For Z/os Remote Source
Vendor: CVE Published:; 8 July 2025

What is CVE-2024-56468?

A vulnerability exists in IBM InfoSphere Data Replication VSAM for z/OS 11.4 that may allow a remote attacker to send a malformed HTTP request to the log reading service, potentially leading to service interruptions. This issue highlights the importance of safeguarding against improperly formatted requests that can disrupt system functionality.

Affected Version(s)

InfoSphere Data Replication VSAM for z/OS Remote Source z/OS 11.4

References

https://www.ibm.com/support/pages/node/7239221

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 8, 2025
Vulnerability Reserved
Dec 26, 2024