CVE-2023-42027

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 3, 2023

Updated: Nov 9, 2023

CWE ID 352

Summary

CVE-2023-42027 is a cross-site request forgery (CSRF) vulnerability affecting IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1. An attacker can exploit this weakness to execute unauthorized actions on trusted user sessions. This threat arises when a website trusts a user's requests, allowing an attacker to manipulate these requests to carry out malicious commands. IBM X-Force has assigned ID 266057 to this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM TXSeries for Multiplatforms

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/smgGUE
https://www.cve.org/CVERecord?id=CVE-2023-42027
https://nvd.nist.gov/vuln/detail/CVE-2023-42027

Back to Vulnerability Database