CVE-2024-56476

MEDIUM

IBM TXSeries for Multiplatforms <9.1, 11.1 - Info Disclosure

Title source: llm
STIX 2.1

Description

IBM TXSeries for Multiplatforms 9.1 and 11.1 could allow an attacker to enumerate usernames due to an observable login attempt response discrepancy.

References (1)

Scores

CVSS v3 5.3
EPSS 0.0022
EPSS Percentile 44.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-204
Status published
Products (2)
ibm/txseries_for_multiplatforms 9.1
ibm/txseries_for_multiplatforms 11.1
Published Apr 02, 2025
Tracked Since Feb 18, 2026