CVE-2023-38362

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Mar 4, 2024

Updated: Mar 5, 2024

CWE ID 204

Summary

CVE-2023-38362 is a vulnerability affecting IBM CICS TX Advanced version 10.1. This issue allows remote attackers to gain unauthorized access to sensitive information due to inconsistencies in HTTP responses. IBM's X-Force has assigned ID 260814 to this vulnerability. The discrepancy in HTTP responses can be observed and exploited by an attacker to extract confidential data from the affected system. IBM urges users to apply the available patch to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/sAd6c3
https://www.cve.org/CVERecord?id=CVE-2023-38362
https://nvd.nist.gov/vuln/detail/CVE-2023-38362

Back to Vulnerability Database

CVE-2023-38362

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations