Vulnerability Details CVE-2025-36160
IBM Concert 1.0.0 through 2.0.0 could disclose sensitive server information from HTTP response headers that could aid in further attacks against the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.0%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2025-36160
-
cpe:2.3:a:ibm:concert:1.0.0
-
cpe:2.3:a:ibm:concert:1.0.1
-
cpe:2.3:a:ibm:concert:1.0.2
-
cpe:2.3:a:ibm:concert:1.0.2.1
-
cpe:2.3:a:ibm:concert:1.0.2.2
-
cpe:2.3:a:ibm:concert:1.0.3
-
cpe:2.3:a:ibm:concert:1.0.4
-
cpe:2.3:a:ibm:concert:1.0.4.1
-
cpe:2.3:a:ibm:concert:1.0.5
-
cpe:2.3:a:ibm:concert:1.0.5.1
-
cpe:2.3:a:ibm:concert:1.0.5.2
-
cpe:2.3:a:ibm:concert:1.0.5.4
-
cpe:2.3:a:ibm:concert:1.1.0
-
cpe:2.3:a:ibm:concert:2.0.0