CVE-2024-49827
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-18
Last updated on: 2025-08-21
Assigner: IBM Corporation
Description
Description
IBM Concert Software 1.0.0 through 1.1.0 is vulnerable to excessive data exposure, allowing attackers to access sensitive information without proper filtering.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | concert | From 1.0.0 (inc) to 2.0.0 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-NVD-CWE-noinfo | |
| CWE-213 | The product's intended functionality exposes information to certain actors in accordance with the developer's security policy, but this information is regarded as sensitive according to the intended security policies of other stakeholders such as the product's administrator, users, or others whose information is being processed. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability in IBM Concert Software versions 1.0.0 through 1.1.0 allows attackers to access sensitive information due to excessive data exposure without proper filtering.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized access to sensitive information, potentially compromising confidentiality and exposing data that should be protected.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70