CVE-2025-33100
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-08-18
Last updated on: 2025-08-21
Assigner: IBM Corporation
Description
Description
IBM Concert Software 1.0.0 through 1.1.0
contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | concert | From 1.0.0 (inc) to 2.0.0 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-798 | The product contains hard-coded credentials, such as a password or cryptographic key. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability involves IBM Concert Software versions 1.0.0 through 1.1.0 containing hard-coded credentials, such as passwords or cryptographic keys. These credentials are used for inbound authentication, outbound communication to external components, or encryption of internal data, which can be exploited.
How can this vulnerability impact me? :
The presence of hard-coded credentials can allow unauthorized access or interception of communications, potentially leading to exposure of sensitive data or unauthorized actions within the software environment.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70