IBM CICS Transaction Gateway for Multiplatforms 9.2 and 9.3 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval. IBM X-Force ID: 273612.
References
Link | Resource |
---|---|
https://exchange.xforce.ibmcloud.com/vulnerabilities/273612 | VDB Entry |
https://https://www.ibm.com/support/pages/node/7145418 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
02 Apr 2024, 17:55
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ibm:cics_transaction_gateway:9.2:*:*:*:*:multiplatforms:*:* cpe:2.3:a:ibm:cics_transaction_gateway:9.3:*:*:*:*:multiplatforms:*:* |
|
Summary |
|
|
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/273612 - VDB Entry | |
References | () https://https://www.ibm.com/support/pages/node/7145418 - Vendor Advisory | |
First Time |
Ibm
Ibm cics Transaction Gateway |
31 Mar 2024, 12:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-03-31 12:15
Updated : 2024-04-02 17:55
NVD link : CVE-2023-50311
Mitre link : CVE-2023-50311
CVE.ORG link : CVE-2023-50311
JSON object : View
Products Affected
ibm
- cics_transaction_gateway
CWE
CWE-522
Insufficiently Protected Credentials