Vulnerabilities > IBM > Concert

DATE CVE VULNERABILITY TITLE RISK
2024-10-22 CVE-2024-43173 Unspecified vulnerability in IBM Concert 1.0.0/1.0.1
IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the SameSite attribute.
network
high complexity
ibm
3.7
3.7
2024-10-22 CVE-2024-43177 Improper Certificate Validation vulnerability in IBM Concert 1.0.0/1.0.1
IBM Concert 1.0.0 and 1.0.1 vulnerable to attacks that rely on the use of cookies without the SameSite attribute.
network
low complexity
ibm CWE-295
critical
 9.8
9.8
2024-09-13 CVE-2024-43180 Cleartext Transmission of Sensitive Information vulnerability in IBM Concert 1.0
IBM Concert 1.0 does not set the secure attribute on authorization tokens or session cookies.
network
low complexity
ibm CWE-319
4.3
4.3