CNNVD-202512-4834 Information

CNNVD ID

CNNVD-202512-4834

Related CVE

CVE-2025-12771

• CNNVD Published: 2025-12-26

Description (Chinese)

IBM Concert是美国国际商业机器（IBM）公司的一种新工具。使用生成式 AI 来帮助管理复杂的云原生应用程序。 IBM Concert 1.0.0版本至2.1.0版本存在缓冲区错误漏洞，该漏洞源于边界检查不当，可能导致本地用户执行任意代码。

Description (English)

IBM Concert is a new tool for IBM. Use the Generating AI to help manage complex cloud raw applications. Versions IBM Concert 1.0.0 to 2.1.0 contain an error loophole in the buffer zone, which stems from inappropriate border checks, which may lead local users to enforce arbitrary codes.

Hazard Level

Medium

Vulnerability Type

缓冲区错误

Affected Vendor

国际商业机器

Published

2025-12-26

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7255549 https://access.redhat.com/security/cve/cve-2025-12771

Patch

https://www.ibm.com/support/pages/node/7255549