Vulnerability Details CVE-2025-36160
IBM Concert 1.0.0 through 2.0.0 could disclose sensitive server information from HTTP response headers that could aid in further attacks against the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.7%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2025-36160
-
cpe:2.3:a:ibm:concert:1.0.0
-
cpe:2.3:a:ibm:concert:1.0.1
-
cpe:2.3:a:ibm:concert:1.0.2
-
cpe:2.3:a:ibm:concert:1.0.2.1
-
cpe:2.3:a:ibm:concert:1.0.2.2
-
cpe:2.3:a:ibm:concert:1.0.3
-
cpe:2.3:a:ibm:concert:1.0.4
-
cpe:2.3:a:ibm:concert:1.0.4.1
-
cpe:2.3:a:ibm:concert:1.0.5
-
cpe:2.3:a:ibm:concert:1.0.5.1
-
cpe:2.3:a:ibm:concert:1.0.5.2
-
cpe:2.3:a:ibm:concert:1.0.5.4
-
cpe:2.3:a:ibm:concert:1.1.0