CVE-2025-27909 | IBM Concert Software up to 1.1.0 Trusted Domain cross-domain policy

Inserito da Angelo Barbosa | Ago 18, 2025 | CVE

A vulnerability was found in IBM Concert Software up to 1.1.0. It has been classified as problematic. Affected is an unknown function of the component Trusted Domain Handler. Performing manipulation results in permissive cross-domain policy with untrusted domains.

This vulnerability is identified as CVE-2025-27909. The attack can be initiated remotely. There is not any exploit available.

Upgrading the affected component is recommended.

CVE-2025-27909 | IBM Concert Software up to 1.1.0 Trusted Domain cross-domain policy

Post correlati

CVE-2024-51011 | Netgear XR300/R6400 POST Request pppoe.cgi pppoe_localip denial of service

CVE-2024-33659 | AMI AptioV up to BKS_5.38 BIOS input validation

CVE-2024-41944 | xibosignage xibo-cms up to 3.3.11/4.0.13 proofofplayReport sortBy sql injection (GHSA-v6q4-h869-gm3r)

CVE-2023-6423 | BigProf Online Clinic Management System 2.2 /clinic/events_view.php FirstRecord cross site scripting