CVE-2023-42029

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Nov 3, 2023

Updated: Nov 9, 2023

CWE ID 79

Summary

CVE-2023-42029 is a cross-site scripting (XSS) vulnerability affecting IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1. Malicious JavaScript code can be embedded in the Web UI of these products, altering their intended functionality and potentially leading to credential disclosure within a trusted session. IBM's X-Force tracked this issue under ID 266059.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM TXSeries for Multiplatforms

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/smgK6Z
https://www.cve.org/CVERecord?id=CVE-2023-42029
https://nvd.nist.gov/vuln/detail/CVE-2023-42029

Back to Vulnerability Database