IBM CICS TX update for golang



Published: 2022-11-21
Risk Medium
Patch available YES
Number of vulnerabilities 6
CVE-ID CVE-2020-29652
CVE-2017-14623
CVE-2021-43565
CVE-2017-3204
CVE-2020-15113
CVE-2020-9283
CWE-ID CWE-476
CWE-287
CWE-20
CWE-300
CWE-281
CWE-617
Exploitation vector Network
Public exploit Public exploit code for vulnerability #6 is available.
Vulnerable software
Subscribe
IBM CICS TX Advanced
Universal components / Libraries / Software for developers

IBM CICS TX Standard
Universal components / Libraries / Software for developers

Vendor IBM Corporation

Security Bulletin

This security bulletin contains information about 6 vulnerabilities.

1) NULL pointer dereference

EUVDB-ID: #VU69449

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2020-29652

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error when processing an authentication request message for the “gssapi-with-mic” method. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM CICS TX Advanced: before 11.1.0.0 ifix5

IBM CICS TX Standard: before 11.1.0.0 ifix5


CPE2.3
External links

http://www.ibm.com/support/pages/node/6833250
http://www.ibm.com/support/pages/node/6833248

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Improper Authentication

EUVDB-ID: #VU69453

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2017-14623

CWE-ID: CWE-287 - Improper Authentication

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to an error in processing authentication requests. A remote attacker can bypass authentication process and login with an empty password under certain conditions.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM CICS TX Advanced: before 11.1.0.0 ifix5

IBM CICS TX Standard: before 11.1.0.0 ifix5


CPE2.3
External links

http://www.ibm.com/support/pages/node/6833250
http://www.ibm.com/support/pages/node/6833248

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

3) Input validation error

EUVDB-ID: #VU64805

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2021-43565

CWE-ID: CWE-20 - Improper Input Validation

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when parsing a Signer to ServerConfig.AddHostKey in cases where the Signer passed to AddHostKey does not implement AlgorithmSigner or the Signer passed to AddHostKey returns a key of type “ssh-rsa” from its PublicKey method. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM CICS TX Advanced: before 11.1.0.0 ifix5

IBM CICS TX Standard: before 11.1.0.0 ifix5


CPE2.3
External links

http://www.ibm.com/support/pages/node/6833250
http://www.ibm.com/support/pages/node/6833248

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

4) Man-in-the-Middle (MitM) attack

EUVDB-ID: #VU69451

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2017-3204

CWE-ID: CWE-300 - Channel Accessible by Non-Endpoint ('Man-in-the-Middle')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform MitM attack.

The vulnerability exists due to Go Crypto library does not verify host keys. A remote attacker can perform MitM attack.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM CICS TX Advanced: before 11.1.0.0 ifix5

IBM CICS TX Standard: before 11.1.0.0 ifix5


CPE2.3
External links

http://www.ibm.com/support/pages/node/6833250
http://www.ibm.com/support/pages/node/6833248

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

5) Improper Preservation of Permissions

EUVDB-ID: #VU41647

Risk: Low

CVSSv3.1:

CVE-ID: CVE-2020-15113

CWE-ID: CWE-281 - Improper preservation of permissions

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to software improperly sets permissions to certain directory paths in case they were previously created (etcd data directory and the directory path when provided to automatically generate self-signed certificates for TLS connections with clients). A local user can gain unauthorized access to sensitive information on the system.

Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM CICS TX Advanced: before 11.1.0.0 ifix5

IBM CICS TX Standard: before 11.1.0.0 ifix5


CPE2.3
External links

http://www.ibm.com/support/pages/node/6833250
http://www.ibm.com/support/pages/node/6833248

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

6) Reachable Assertion

EUVDB-ID: #VU69447

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2020-9283

CWE-ID: CWE-617 - Reachable Assertion

Exploit availability: Yes

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a reachable assertion during signature verification process. A remote attacker can supply a specially crafted certificate to the application (server or client) and perform a denial of service (DoS) attack.


Mitigation

Install update from vendor's website.

Vulnerable software versions

IBM CICS TX Advanced: before 11.1.0.0 ifix5

IBM CICS TX Standard: before 11.1.0.0 ifix5


CPE2.3
External links

http://www.ibm.com/support/pages/node/6833250
http://www.ibm.com/support/pages/node/6833248

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###