CVE-2023-43018

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2023-43018
IBM CICS TX Standard 11.1 and Advanced 10.1, 11.1 performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses. IBM X-Force ID: 266163.

5.9 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.2 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://exchange.xforce.ibmcloud.com/vulnerabilities/266163 VDB Entry Vendor Advisory
https://www.ibm.com/support/pages/node/7063668 Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/266163 VDB Entry Vendor Advisory
https://www.ibm.com/support/pages/node/7063668 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:a:ibm:cics_tx:10.1:*:*:*:advanced:*:*:*
cpe:2.3:a:ibm:cics_tx:11.1:*:*:*:advanced:*:*:*
cpe:2.3:a:ibm:cics_tx:11.1:*:*:*:standard:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
History

21 Nov 2024, 08:23

Type Values Removed Values Added
CVSS v2 : unknown
v3 : 7.5 		v2 : unknown
v3 : 5.9
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/266163 - VDB Entry, Vendor Advisory () https://exchange.xforce.ibmcloud.com/vulnerabilities/266163 - VDB Entry, Vendor Advisory
References () https://www.ibm.com/support/pages/node/7063668 - Patch, Vendor Advisory () https://www.ibm.com/support/pages/node/7063668 - Patch, Vendor Advisory

09 Nov 2023, 17:28

Type Values Removed Values Added
CWE CWE-269
References (MISC) https://www.ibm.com/support/pages/node/7063668 - (MISC) https://www.ibm.com/support/pages/node/7063668 - Patch, Vendor Advisory
References (MISC) https://exchange.xforce.ibmcloud.com/vulnerabilities/266163 - (MISC) https://exchange.xforce.ibmcloud.com/vulnerabilities/266163 - VDB Entry, Vendor Advisory
First Time Ibm
Linux
Ibm cics Tx
Linux linux Kernel
CVSS v2 : unknown
v3 : unknown 		v2 : unknown
v3 : 7.5
CPE cpe:2.3:a:ibm:cics_tx:11.1:*:*:*:standard:*:*:*
cpe:2.3:a:ibm:cics_tx:10.1:*:*:*:advanced:*:*:*
cpe:2.3:a:ibm:cics_tx:11.1:*:*:*:advanced:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

03 Nov 2023, 00:15

Type Values Removed Values Added
New CVE
Information

Published : 2023-11-03 00:15

Updated : 2024-11-21 08:23

NVD link : CVE-2023-43018

Mitre link : CVE-2023-43018

CVE.ORG link : CVE-2023-43018

JSON object : View

Products Affected

ibm

  • cics_tx

linux

  • linux_kernel
CWE
CWE-250

Execution with Unnecessary Privileges

CWE-269

Improper Privilege Management


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024