Overview
- Description
- IBM CICS Transaction Gateway for Multiplatforms 9.2 and 9.3 transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
- Source
- psirt@us.ibm.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- Severity
- HIGH
Weaknesses
- psirt@us.ibm.com
- CWE-522
Social media
- Hype score
- Not currently trending
馃毃 Unsecured Credentials Exposed: #CVE-2023-50310 Threatens #IBM CICS Transaction Gateway https://t.co/6YnSHApLui
@UndercodeNews
5 Nov 2024
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
馃毃 CVE-2023-50310 (Published: 2024-10-23) - High severity vulnerability in IBM products. Affects specific versions. Remediation steps are available to mitigate risks. Stay informed and secure your systems! More details: https://t.co/Wc9diUflco #CyberSecurity #IBM #CVE
@transilienceai
27 Oct 2024
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
馃毃 CVE-2023-50310 (Published: 2024-10-23) - A high-severity vulnerability in IBM products. Affects specific versions; ensure your systems are updated! For remediation steps, visit: https://t.co/Wc9diUflco. Stay secure! #CyberSecurity #IBM #CVE
@transilienceai
27 Oct 2024
22 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:cics_transaction_gateway:9.2:*:*:*:*:multiplatforms:*:*",
"vulnerable": true,
"matchCriteriaId": "B6D13B6F-9265-459A-A654-4B5872C81CAA"
},
{
"criteria": "cpe:2.3:a:ibm:cics_transaction_gateway:9.3:*:*:*:*:multiplatforms:*:*",
"vulnerable": true,
"matchCriteriaId": "7E9F94E4-76EC-4324-A98F-61BFAD7CFE4C"
}
],
"operator": "OR"
}
]
}
]