CVE-2023-33848: Infoleak
First published: Tue Jun 06 2023(Updated: )
Credit: psirt@us.ibm.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| IBM CICS TX Standard | <=11.1 | |
| IBM CICS TX | =10.1 | |
| IBM CICS TX | =11.1 | |
| IBM CICS TX | =11.1 | |
| Linux Linux kernel | ||
| IBM TXSeries for Multiplatforms | =8.1 | |
| IBM TXSeries for Multiplatforms | =9.1 | |
| IBM AIX | ||
| IBM TXSeries for Multiplatforms | =8.2 | |
| HP HP-UX |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-33848.
What is the severity of CVE-2023-33848?
The severity of CVE-2023-33848 is medium with a CVSS score of 6.5.
How can a privileged user obtain sensitive information in IBM CICS TX?
A privileged user can obtain highly sensitive information by enabling debug mode in IBM CICS TX Standard versions 11.1.
Which versions of IBM CICS TX are affected by CVE-2023-33848?
IBM CICS TX Standard versions 11.1, CICS TX Advanced versions 10.1 and 11.1.
How can I fix CVE-2023-33848?
You can fix CVE-2023-33848 by applying the patch provided by IBM for IBM CICS TX Standard version 11.1.
- collector/ibm-support
- collector/nvd-index
- vendor/ibm
- product/cics tx standard
- canonical/ibm cics tx standard
- product/cics tx
- canonical/ibm cics tx
- vendor/linux
- product/linux kernel
- canonical/linux linux kernel
- product/txseries for multiplatforms
- canonical/ibm txseries for multiplatforms
- product/aix
- canonical/ibm aix
- vendor/hp
- product/hp-ux
- canonical/hp hp-ux