CVE-2023-42027
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 3, 2023
Updated: Nov 9, 2023
CWE ID 352
Summary
CVE-2023-42027 is a cross-site request forgery (CSRF) vulnerability affecting IBM CICS TX Standard 11.1, Advanced 10.1, 11.1, and TXSeries for Multiplatforms 8.1, 8.2, 9.1. An attacker can exploit this weakness to execute unauthorized actions on trusted user sessions. This threat arises when a website trusts a user's requests, allowing an attacker to manipulate these requests to carry out malicious commands. IBM X-Force has assigned ID 266057 to this vulnerability.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- IBM TXSeries for Multiplatforms
Affected Vendors
- IBM Corporation