Shodan
Vulnerabilities
Vulnerable Software
Ibm:  >> Concert  >> 1.0.5.4  Security Vulnerabilities
CVE-2025-13044
IBM Concert 1.0.0 through 2.2.0 creates temporary files with predictable names, which allows local users to overwrite arbitrary files via a symlink attack.
CVSS Score
6.2
EPSS Score
0.0
Published
2026-04-07
CVE-2025-36438
IBM Concert 1.0.0 through 2.2.0 could allow a privileged user to perform unauthorized actions due to improper restriction of channel communication to intended endpoints.
CVSS Score
5.1
EPSS Score
0.0
Published
2026-03-25
CVE-2025-36440
IBM Concert 1.0.0 through 2.2.0 could allow a local user to obtain sensitive information due to missing function level access control.
CVSS Score
5.1
EPSS Score
0.0
Published
2026-03-25
CVE-2025-64646
IBM Concert 1.0.0 through 2.2.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources.
CVSS Score
6.2
EPSS Score
0.0
Published
2026-03-25
CVE-2025-64647
IBM Concert 1.0.0 through 2.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information
CVSS Score
5.9
EPSS Score
0.0
Published
2026-03-25
CVE-2025-64648
IBM Concert 1.0.0 through 2.2.0 transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.
CVSS Score
5.9
EPSS Score
0.0
Published
2026-03-25
CVE-2025-12708
IBM Concert 1.0.0 through 2.2.0 contains hard-coded credentials that could be obtained by a local user.
CVSS Score
6.2
EPSS Score
0.0
Published
2026-03-25
CVE-2025-33088
IBM Concert 1.0.0 through 2.1.0 could allow a local user with specific knowledge about the system's architecture to escalate their privileges due to incorrect file permissions for critical resources.
CVSS Score
7.4
EPSS Score
0.0
Published
2026-02-17
CVE-2025-33089
IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information or perform unauthorized actions due to the use of hard coded user credentials.
CVSS Score
6.5
EPSS Score
0.001
Published
2026-02-17
CVE-2025-33101
IBM Concert 1.0.0 through 2.1.0 could allow an attacker to obtain sensitive information using man in the middle techniques due to improper clearing of heap memory.
CVSS Score
5.9
EPSS Score
0.0
Published
2026-02-17


Products
Pricing
Contact Us

Shodan ® - All rights reserved