CVE-2024-49827

CWE-2133 documents3 sources
Severity
7.5HIGH
EPSS
0.0%
top 92.53%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
IBM ConcertIBM Concert Software
Timeline
PublishedAug 18

Description

IBM Concert Software 1.0.0 through 1.1.0 is vulnerable to excessive data exposure, allowing attackers to access sensitive information without proper filtering.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.2 | Impact: 1.4

Affected Packages2 packages

CVEListV5ibm/concert_software1.0.01.1.0
NVDibm/concert1.0.02.0.0

🔴Vulnerability Details

2
CVEList
IBM Concert Software information disclosure2025-08-18
GHSA
GHSA-wj6f-phfq-g2gw: IBM Concert Software 12025-08-18
CVE-2024-49827 (HIGH CVSS 7.5) | IBM Concert Software 1.0.0 through | cvebase.io