Rewterz Threat Advisory – Multiple IBM Cloud Pak for Security Vulnerabilities
November 23, 2022Rewterz Threat Advisory – CVE-2022-45470 – Apache Hama Vulnerability
November 23, 2022Rewterz Threat Advisory – Multiple IBM Cloud Pak for Security Vulnerabilities
November 23, 2022Rewterz Threat Advisory – CVE-2022-45470 – Apache Hama Vulnerability
November 23, 2022Severity
Medium
Analysis Summary
CVE-2022-34320 CVSS:5.9
IBM CICS TX 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
CVE-2022-34319 CVSS:5.9
IBM CICS TX 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
Impact
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2022-34320
- CVE-2022-34319
Affected Vendors
IBM
Affected Products
- IBM CICS TX Standard 11.1
- IBM CICS TX Advanced 11.1
Remediation
Refer to IBM Security Bulletin for patch, upgrade or suggested workaround information.
CVE-2022-34320
CVE-2022-34319