CVE-2024-55913

Name of the Vulnerable Software and Affected Versions IBM Concert Software versions 1.0.0 through 1.0.5

Description The issue allows a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.

Recommendations For IBM Concert Software versions 1.0.0 through 1.0.5, consider restricting access to sensitive files and directories to minimize the risk of exploitation. As a temporary workaround, avoid using URL requests that contain "dot dot" sequences (/../) until a patch is available.