CVE-2025-27909 in Concert Software정보

요약

\~에 의해 MITRE • 2025. 08. 18.

IBM Concert Software 1.0.0 through 1.1.0 uses cross-origin resource sharing (CORS) which could allow an attacker to carry out privileged actions as the domain name is not being limited to only trusted domains.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

책임이 있는

Ibm

예약하다

2025. 03. 10.

공개

2025. 08. 18.

모더레이션

수락

항목

VDB-320452

CPE

준비됨

CWE

CWE-942 (확인됨)

CVSS

9.8 (NVD)

EPSS

0.00043

KEV

아니요

활동

매우 낮음

출처

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-27909
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-27909
CVE Details	https://www.cvedetails.com/cve/CVE-2025-27909/

◂ 이전 개요 다음 ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!