Primary

Context

IBM CICS Transaction Gateway for Multiplatforms Improper Access Control Vulnerability Allowing Unrestricted File Transfer or Viewing

Vulnerability

An improper access control vulnerability has been identified in IBM CICS Transaction Gateway for Multiplatforms, affecting versions 9.3 and 10.1. This vulnerability could allow users to transfer or view files due to inadequate access controls.

Impact

Exploitation of this vulnerability could lead to unauthorized file transfers or access to files, potentially exposing sensitive information.

Remediation

Users are advised to configure proper egress and ingress policies at either the POD or HOST level. Detailed instructions for implementing these policies can be found in the CICS Transaction Gateway for Multiplatforms documentation.

Added: Mar 16, 2026, 2:33 PM

Updated: Mar 16, 2026, 2:33 PM

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.9

remediation

6.0

relevance

4.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

4.5

impact

2.5

exploitability

4.9

remediation

6.0

relevance

4.0

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

IBM CICS Transaction Gateway for Multiplatforms Improper Access Control Vulnerability Allowing Unrestricted File Transfer or Viewing

Vulnerability

Impact

Remediation

Affected Products

IBM CICS Transaction Gateway

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating