CVE-2025-64646

CWE-143 documents3 sources

Severity

5.5MEDIUM

EPSS

0.0%

top 98.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedMar 25

Description

IBM Concert 1.0.0 through 2.2.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources.

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 2.5 | Impact: 3.6

▶CVEListV5ibm/concert1.0.0 — 2.2.0

▶NVDibm/concert1.0.0 — 2.2.0

CVEList

Multiple Vulnerabilities in IBM Concert Software↗2026-03-25

▶

GHSA

GHSA-6hcp-q563-cm49: IBM Concert 1↗2026-03-25

▶