Login Sign Up

CVE-2023-38741

7.5 HIGH
Denial of Service

📋 TL;DR

IBM TXSeries for Multiplatforms versions 8.1, 8.2, and 9.1 are vulnerable to a denial of service attack due to improper timeout enforcement on read operations. Attackers can conduct slowloris-type attacks to exhaust server resources and cause service disruption. This affects organizations running these specific IBM TXSeries versions.

💻 Affected Systems

Products:
  • IBM TXSeries for Multiplatforms
Versions: 8.1, 8.2, 9.1
Operating Systems: Multiple platforms (as per product name)
Default Config Vulnerable: ⚠️ Yes
Notes: All deployments of affected versions are vulnerable unless patched.

📦 What is this software?

Txseries For Multiplatform by Ibm

View all CVEs affecting Txseries For Multiplatform →

Txseries For Multiplatform by Ibm

View all CVEs affecting Txseries For Multiplatform →

Txseries For Multiplatform by Ibm

View all CVEs affecting Txseries For Multiplatform →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete service outage of IBM TXSeries applications, disrupting business operations that depend on these systems.

🟠

Likely Case

Degraded performance or temporary service interruptions affecting application availability.

🟢

If Mitigated

Minimal impact with proper network controls and monitoring in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ⚠️ Yes
Complexity: LOW

Slowloris attacks are well-known and tools are publicly available, though no specific exploit for this CVE has been published.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Apply fixes as per IBM advisory

Vendor Advisory: https://www.ibm.com/support/pages/node/7025476

Restart Required: Yes

Instructions:

1. Review IBM advisory. 2. Download and apply appropriate fix from IBM Fix Central. 3. Restart affected TXSeries services. 4. Verify patch application.

🔧 Temporary Workarounds

Network-level protection

all

Implement network controls to limit connection rates and detect slowloris patterns

Load balancer configuration

all

Configure load balancers to drop connections with slow request patterns

🧯 If You Can't Patch

  • Implement network segmentation to isolate vulnerable systems
  • Deploy WAF or IPS with slowloris protection rules

🔍 How to Verify

Check if Vulnerable:

Check IBM TXSeries version against affected versions (8.1, 8.2, 9.1)

Check Version:

Consult IBM TXSeries documentation for version check commands specific to your installation

Verify Fix Applied:

Verify version after patch application and test service resilience to slow connections

📡 Detection & Monitoring

Log Indicators:

  • Unusually high number of open connections
  • Connection timeouts
  • Slow request patterns

Network Indicators:

  • Multiple slow HTTP requests from single source
  • Incomplete request headers over extended periods

SIEM Query:

source="txseries_logs" AND (connection_count > threshold OR request_duration > timeout_value)

📊 Metadata

CVE ID: CVE-2023-38741
CVSS v3 Score: 7.5 (HIGH)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE: CWE-400
Published: August 14, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-38741, you might also want to check these:

CVE-2024-45166 9.8

UCI IDOL2 through version 2.12 contains multiple memory corruption vulnerabilities due to improper i...

Same vulnerability type (CWE-400)
CVE-2025-61303 9.8

This vulnerability in Hatching Triage Sandbox allows malware samples to evade detection by recursive...

Same vulnerability type (CWE-400)
CVE-2024-39462 9.8

This is a Linux kernel memory corruption vulnerability in the BCM2711 DVP clock driver where array b...

Same vulnerability type (CWE-400)