Main Vulnerability Database Vulnerabilities #VU81235

Improper Restriction of Rendered UI Layers or Frames in IBM CICS TX Standard - CVE-2022-34162

Published: September 27, 2023

Vulnerability identifier: #VU81235

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2022-34162

CWE-ID: CWE-1021

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: IBM Corporation

Affected software:
IBM CICS TX Standard

Detailed vulnerability description

The vulnerability allows a remote attacker to hijack the victim's click actions and possibly launch further attacks.

The vulnerability exists due to improper restriction of rendered UI layers or frames. Remote attacker can hijack the victim's click actions and possibly launch further attacks.

How to mitigate CVE-2022-34162

Install updates from vendor's website.

Sources

https://www.ibm.com/support/pages/node/6608198
https://www.ibm.com/support/pages/node/6608196
https://exchange.xforce.ibmcloud.com/vulnerabilities/229332

Improper Restriction of Rendered UI Layers or Frames in IBM CICS TX Standard - CVE-2022-34162

Detailed vulnerability description

How to mitigate CVE-2022-34162

Sources

Please verify you're human