Vulnerability Description
IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 257100.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ibm | Txseries For Multiplatform | 8.1 |
| Ibm | Aix | - |
| Linux | Linux Kernel | - |
| Hp | Hp-Ux | - |
| Ibm | Cics Tx | 10.1 |
Related Weaknesses (CWE)
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/257100VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7001601PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7001629PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7001633PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/257100VDB EntryVendor Advisory
- https://www.ibm.com/support/pages/node/7001601PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7001629PatchVendor Advisory
- https://www.ibm.com/support/pages/node/7001633PatchVendor Advisory
FAQ
What is CVE-2023-33846?
CVE-2023-33846 is a vulnerability with a CVSS score of 5.4 (MEDIUM). IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScr...
How severe is CVE-2023-33846?
CVE-2023-33846 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-33846?
Check the references section above for vendor advisories and patch information. Affected products include: Ibm Txseries For Multiplatform, Ibm Aix, Linux Linux Kernel, Hp Hp-Ux, Ibm Cics Tx.