CVE-2025-64647
Multiple Vulnerabilities in IBM Concert Software
In short
IBM Concert versions 1.0.0 to 2.2.0 use weak encryption methods that could let attackers decrypt sensitive data. This puts confidential information at risk of unauthorized access.
Technical detail
The application employs cryptographically weak algorithms for protecting sensitive data, enabling an attacker with access to encrypted communications or stored data to potentially recover plaintext through cryptanalysis or brute-force methods. The vulnerability affects versions 1.0.0 through 2.2.0 and may compromise confidentiality of highly sensitive information.
Summary generated and translated by AI from the official description.
IBM Concert 1.0.0 through 2.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
IBM · ConcertWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →