CVE-2023-33848

CWE-200Information Exposure3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.1%
top 77.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
IBM Cics TX AdvancedIBM Cics TX StandardIBM Txseries FOR Multiplatforms+1 more
Timeline
PublishedJun 7

Description

IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could allow a privileged user to obtain highly sensitive information by enabling debug mode. IBM X-Force ID: 257104.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:NExploitability: 1.2 | Impact: 3.6

Affected Packages5 packages

CVEListV5ibm/cics_tx_advanced10.1, 11.1
CVEListV5ibm/cics_tx_standard11.1
NVDibm/cics_tx10.1, 11.1+1
CVEListV5ibm/txseries_for_multiplatforms8.1, 8.2, 9.1
NVDibm/txseries8.1, 8.2, 9.1+2

🔴Vulnerability Details

2
GHSA
GHSA-g86w-p7pq-ffvq: IBM TXSeries for Multiplatforms 82023-06-07
CVEList
IBM CICS TX information disclosure2023-06-07