First published: Fri Jul 08 2022(Updated: )
IBM CICS TX Standard and Advanced 11.1 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 229330.
Credit: psirt@us.ibm.com psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM CICS TX | =11.1 | |
IBM CICS TX | =11.1 | |
Linux Linux kernel |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this issue is CVE-2022-34160.
The severity rating of CVE-2022-34160 is medium with a value of 5.4.
IBM CICS TX Standard and Advanced 11.1 are affected by CVE-2022-34160.
A remote attacker can exploit this vulnerability by injecting malicious HTML code that will be executed in the victim's web browser within the security context of the hosting site.
Yes, IBM has released patches and workarounds to address CVE-2022-34160. Please refer to the IBM support pages for more information.