Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Concert Software cross-origin resource sharing
Vulnerability Description
IBM Concert Software 1.0.0 through 1.1.0 uses cross-origin resource sharing (CORS) which could allow an attacker to carry out privileged actions as the domain name is not being limited to only trusted domains.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Vulnerability Type
过度许可的跨域白名单
Vulnerability Title
IBM Concert Software 安全漏洞
Vulnerability Description
IBM Concert Software是美国国际商业机器(IBM)公司的一个应用生命周期风险识别软件。 IBM Concert Software 1.1.0及之前版本存在安全漏洞,该漏洞源于跨域资源共享(CORS)配置未将域名限制在可信域,导致攻击者可执行特权操作。
CVSS Information
N/A
Vulnerability Type
N/A