Home

Description

IBM Concert Software 1.0.0 through 2.0.0 could allow a remote attacker to hijack the clicking action of the victim.

PUBLISHED Reserved 2025-04-15 | Published 2025-11-21 | Updated 2025-11-21 | Assigner ibm




MEDIUM: 6.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Problem types

CWE-1021 Improper Restriction of Rendered UI Layers or Frames

Product status

Default status
unaffected

1.0.0 (semver)
affected

References

www.ibm.com/support/pages/node/7252019

cve.org (CVE-2025-36149)

nvd.nist.gov (CVE-2025-36149)

Download JSON