CVE-2025-64648

CVSS v3.1

5.9

Medium

AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

IBM Concert 1.0.0 through 2.2.0 transmits data in clear text that could allow an attacker to obtain sensitive information using man in the middle techniques.

Fix

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319

Related Identifiers

CVE-2025-64648

Affected Products

Concerto

CVE-2025-64648

Weakness Enumeration

Related Identifiers

Affected Products

References · 2