CNNVD-202509-045 Information
Sep 01, 2025
cve
CNNVD ID
CNNVD-202509-045
Related CVE
- CNNVD Published: 2025-09-01
Description (Chinese)
IBM Concert Software是美国国际商业机器(IBM)公司的一个应用生命周期风险识别软件。 IBM Concert Software 1.0.0至1.1.0版本存在信任管理问题漏洞,该漏洞源于证书验证不当,可能导致未经授权的操作。
Description (English)
IBM Concert Software is an application life-cycle risk identification software for IBM. There is a trust management gap in IBM Concert Software Versions 1.0.0 to 1.1.0, which stems from improper certification of certificates and may lead to unauthorized operations.
Hazard Level
High
Vulnerability Type
信任管理问题
Affected Vendor
国际商业机器
Published
2025-09-01
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7243699 https://access.redhat.com/security/cve/cve-2025-33099 https://nvd.nist.gov/vuln/detail/CVE-2025-33099
Patch
https://www.ibm.com/support/pages/node/7243699
Share on: