Concert CVE Vulnerabilities
By Ibm — 4 known vulnerabilities
Critical
0
High
2
Medium
2
Low
0
None
0
All Concert CVEs
CVE-2025-64645
7.7
high
IBM Concert 1.0.0 through 2.1.0 could allow a local user to escalate their privileges due to a race condition of a symbolic link.
Dec 26, 2025
CVE-2025-1721
5.9
medium
IBM Concert 1.0.0 through 2.1.0 could allow a remote attacker to obtain sensitive information from allocated memory due to improper clearing of heap memory.
Dec 26, 2025
CVE-2025-12771
7.8
high
IBM Concert 1.0.0 through 2.1.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user could overflow the buffer and execute arbitrary code on the system.
Dec 26, 2025
CVE-2025-36154
6.2
medium
IBM Concert 1.0.0 through 2.1.0 stores sensitive information in cleartext during recursive docker builds which could be obtained by a local user.
Dec 24, 2025