CVE-2022-34162UI Misrepresentation / Clickjacking in IBM Cics TX Advanced

CWE-1021UI Misrepresentation / Clickjacking3 documents3 sources
Severity
6.1MEDIUMNVD
EPSS
0.3%
top 49.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
IBM Cics TX AdvancedIBM Cics TX StandardIBM Cics TX
Timeline
PublishedAug 1
Latest updateAug 2

Description

IBM CICS TX 11.1 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit this vulnerability to hijack the victim's click actions and possibly launch further attacks against the victim. IBM X-Force ID: 229332.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages3 packages

NVDibm/cics_tx11.1
CVEListV5ibm/cics_tx_advanced11.1
CVEListV5ibm/cics_tx_standard11.1

🔴Vulnerability Details

2
GHSA
GHSA-8crc-xm4w-hr72: IBM CICS TX 112022-08-02
CVEList
CVE-2022-34162: IBM CICS TX 112022-08-01
CVE-2022-34162 — UI Misrepresentation / Clickjacking | cvebase