### [CVE-2024-41738](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-41738)
![](https://img.shields.io/static/v1?label=Product&message=TXSeries%20for%20Multiplatforms&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=10.1%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-598%20Information%20Exposure%20Through%20Query%20Strings%20in%20GET%20Request&color=brightgreen)

### Description

IBM TXSeries for Multiplatforms 10.1 could allow an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request which could be obtained using man in the middle techniques.

### POC

#### Reference
- https://www.ibm.com/support/pages/node/7174572

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds