mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
125 lines
4.4 KiB
JSON
125 lines
4.4 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2023-33849",
|
|
"ASSIGNER": "psirt@us.ibm.com",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "IBM TXSeries for Multiplatforms 8.1, 8.2, 9.1, CICS TX Standard, 11.1, CICS TX Advanced 10.1, and 11.1 could transmit sensitive information in query parameters that could be intercepted using man in the middle techniques. IBM X-Force ID: 257105."
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-311 Missing Encryption of Sensitive Data",
|
|
"cweId": "CWE-311"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "IBM",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "TXSeries for Multiplatforms",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "8.1, 8.2, 9.1"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "CICS TX Standard",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "11.1"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
{
|
|
"product_name": "CICS TX Advanced",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "=",
|
|
"version_value": "10.1, 11.1"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/257105",
|
|
"refsource": "MISC",
|
|
"name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/257105"
|
|
},
|
|
{
|
|
"url": "https://www.ibm.com/support/pages/node/7001687",
|
|
"refsource": "MISC",
|
|
"name": "https://www.ibm.com/support/pages/node/7001687"
|
|
},
|
|
{
|
|
"url": "https://www.ibm.com/support/pages/node/7001697",
|
|
"refsource": "MISC",
|
|
"name": "https://www.ibm.com/support/pages/node/7001697"
|
|
},
|
|
{
|
|
"url": "https://www.ibm.com/support/pages/node/7001695",
|
|
"refsource": "MISC",
|
|
"name": "https://www.ibm.com/support/pages/node/7001695"
|
|
}
|
|
]
|
|
},
|
|
"generator": {
|
|
"engine": "Vulnogram 0.1.0-dev"
|
|
},
|
|
"source": {
|
|
"discovery": "UNKNOWN"
|
|
},
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"attackComplexity": "HIGH",
|
|
"attackVector": "NETWORK",
|
|
"availabilityImpact": "NONE",
|
|
"baseScore": 3.7,
|
|
"baseSeverity": "LOW",
|
|
"confidentialityImpact": "LOW",
|
|
"integrityImpact": "NONE",
|
|
"privilegesRequired": "NONE",
|
|
"scope": "UNCHANGED",
|
|
"userInteraction": "NONE",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
|
|
"version": "3.1"
|
|
}
|
|
]
|
|
}
|
|
} |