CVE-2025-36440 | IBM Concert up to 2.2.0 insufficiently protected credentials

Inserito da Angelo Barbosa | Mar 25, 2026 | CVE

A vulnerability labeled as problematic has been found in IBM Concert up to 2.2.0. This vulnerability affects unknown code. Such manipulation leads to insufficiently protected credentials.

This vulnerability is referenced as CVE-2025-36440. The attack can only be performed from a local environment. No exploit is available.

The affected component should be upgraded.

CVE-2025-36440 | IBM Concert up to 2.2.0 insufficiently protected credentials

Post correlati

CVE-2024-51465 | IBM App Connect Enterprise Certified Container up to 12.3 Request os command injection

CVE-2024-12212 | Horner Automation Cscape up to 10.0.363.1 CSP Files Parser out-of-bounds (icsa-24-345-05)

CVE-2025-10340 | WhatCD Gazelle up to 63b337026d49b5cf63ce4be20fdabdc880112fa3 Commit Message change_log.php cross site scripting

CVE-2024-5757 | Elementor Header & Footer Builder Plugin up to 1.6.35 on WordPress Site Title Widget cross site scripting