CVE-2024-41741

MEDIUM

IBM TXSeries for Multiplatforms 10.1 - Info Disclosure

Title source: llm

Description

IBM TXSeries for Multiplatforms 10.1 could allow an attacker to determine valid usernames due to an observable timing discrepancy which could be used in further attacks against the system.

References (1)

[Vendor Advisory] https://www.ibm.com/support/pages/node/7174572

Scores

CVSS v3 5.3

EPSS 0.0012

EPSS Percentile 30.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact partial

Details

CWE

CWE-208 CWE-203

Status published

Products (1)

ibm/txseries_for_multiplatforms 10.1

Published Nov 01, 2024

Tracked Since Feb 18, 2026