CVE-2024-41738

Name of the Vulnerable Software and Affected Versions IBM TXSeries for Multiplatforms version 10.1

Description The issue allows an attacker to obtain sensitive information from the query string of an HTTP GET method to process a request, which could be obtained using man-in-the-middle techniques. This could potentially expose sensitive information.

Recommendations For IBM TXSeries for Multiplatforms version 10.1, consider disabling the use of HTTP GET methods to process sensitive requests until a patch is available. Restrict access to sensitive information and minimize the use of query strings in HTTP requests to reduce the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.