Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
IBM Concert Software Cleartext Storage in a File or on Disk.
Vulnerability Description
IBM Concert 1.0.0 through 2.1.0 stores sensitive information in cleartext during recursive docker builds which could be obtained by a local user.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
在文件或磁盘上的明文存储
Vulnerability Title
IBM Concert 安全漏洞
Vulnerability Description
IBM Concert是美国国际商业机器(IBM)公司的一种新工具。使用生成式 AI 来帮助管理复杂的云原生应用程序。 IBM Concert 1.0.0版本至2.1.0版本存在安全漏洞,该漏洞源于递归docker构建期间以明文存储敏感信息,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A