IBM Concert Software 1.0.0, 1.0.1, 1.0.2, and 1.0.2.1 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database.
References
Link | Resource |
---|---|
https://www.ibm.com/support/pages/node/7176346 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
11 Apr 2025, 14:49
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ibm:concert_software:1.0.2:*:*:*:*:*:*:* cpe:2.3:a:ibm:concert_software:1.0.1:*:*:*:*:*:*:* cpe:2.3:a:ibm:concert_software:1.0.2.1:*:*:*:*:*:*:* cpe:2.3:a:ibm:concert_software:1.0.0:*:*:*:*:*:*:* |
|
Summary |
|
|
First Time |
Ibm
Ibm concert Software |
|
References | () https://www.ibm.com/support/pages/node/7176346 - Vendor Advisory |
19 Nov 2024, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-11-19 20:15
Updated : 2025-04-11 14:49
NVD link : CVE-2024-52360
Mitre link : CVE-2024-52360
CVE.ORG link : CVE-2024-52360
JSON object : View
Products Affected
ibm
- concert_software
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')