exploitDog

GHSA-gmqg-6pjr-jj57

Опубликовано: 20 янв. 2026

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the content of the file uploaded to the web interface.

IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the content of the file uploaded to the web interface.

Ссылки

EPSS

Процентиль: 12%

0.00039

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434

Связанные уязвимости

CVE-2025-33015

CVSS3: 8.8

nvd

19 дней назад

IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the content of the file uploaded to the web interface.

EPSS

Процентиль: 12%

0.00039

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-434