CVE-2024-52891

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2024-52891

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-52891.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2024-52891

Published

2025-01-07T12:15:25.010Z

Modified

2026-04-02T12:23:20.300317Z

Severity

5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N CVSS Calculator

Summary

[none]

Details

IBM Concert Software 1.0.0, 1.0.1, 1.0.2, 1.0.2.1, and 1.0.3

could allow an authenticated user to inject malicious information or obtain information from log files due to improper log neutralization.

References

https://www.ibm.com/support/pages/node/7180303

Affected packages

Git / github.com/ibm/concert

Affected ranges

Type

GIT

Repo

https://github.com/ibm/concert

Events

Introduced

Last affected

a58b5d823f3d64e1bb3e2171c3cbc684aec96252

Introduced

Last affected

131d8c00b53c7f379eaa9443a2efc436d2632ba4

Introduced

Last affected

0312544220cfe89044cfb7bee2bcdfa055d91d62

Introduced

Last affected

0312544220cfe89044cfb7bee2bcdfa055d91d62

Introduced

Last affected

0e062bc9699c1812aa1cafe1075b6065efc6b678

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.2.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "1.0.3"
        }
    ]
}

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-52891.json"