Improper Access Control in IBM CICS Transaction Gateway for Multiplatforms
CVE-2026-0977

5.1MEDIUM

Key Information:

Vendor: IBM
Status: Cics Transaction Gateway For Multiplatforms
Vendor: CVE Published:; 13 March 2026

What is CVE-2026-0977?

IBM CICS Transaction Gateway for Multiplatforms versions 9.3 and 10.1 are exposed to a security vulnerability that may allow unauthorized users to transfer or view sensitive files due to insufficient access controls. This flaw can potentially lead to data exposure and misuse, highlighting the importance of implementing robust security measures. Users of these versions are encouraged to apply the necessary patches promptly to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

CICS Transaction Gateway for Multiplatforms 9.3

CICS Transaction Gateway for Multiplatforms 10.1

References

https://www.ibm.com/support/pages/node/7263518

patchvendor-advisory

CVSS V3.1

Score:

5.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 13, 2026
Vulnerability Reserved
Jan 15, 2026

JSON

IBM