CVE-2022-34316 LOW

CVE-2022-34316: IBM CICS TX information disclosure

Vendor Ibm
Product CICS TX
Weakness CWE-644
Published November 14, 2022
Last update April 30, 2025

CVSS base score

3.7/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality Low
Integrity None

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

What the vulnerability does

01Description

IBM CICS TX 11.1 does not neutralize or incorrectly neutralizes web scripting syntax in HTTP headers that can be used by web browser components that can process raw headers. IBM X-Force ID: 229452.

Key dates

02Disclosure timeline

November 14, 2022 CVE published
April 30, 2025 Record updated

Related vulnerabilities

04Related CVE