First published: Fri Oct 28 2022(Updated: )
IBM CICS TX Standard and Advanced 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 229440.
Credit: psirt@us.ibm.com
Affected Software | Affected Version | How to fix |
---|---|---|
IBM CICS TX Standard | <=All | |
IBM CICS TX | =11.1 | |
IBM CICS TX | =11.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2022-34309 is classified as a medium-severity vulnerability due to the use of weaker cryptographic algorithms.
To address CVE-2022-34309, update IBM CICS TX Standard or Advanced to the latest version that enhances cryptographic security.
CVE-2022-34309 affects IBM CICS TX Standard and Advanced version 11.1 and all prior versions.
CVE-2022-34309 could potentially allow attackers to decrypt highly sensitive information processed by affected IBM CICS TX systems.
CVE-2022-34309 is not dependent on specific configurations but rather arises from the inherent use of weaker cryptographic algorithms.