CVE-2024-52893

🗓️ 07 Jan 2025 12:00:41Reported by ibmType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 64 Views

IBM Concert Software allows remote attackers to obtain sensitive information via error messages.

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of IBM Concert Software’s artificial intelligence-based automation tools lies in its inadequate error reporting mechanism, allowing attackers to gain unauthorized access to protected information.	21 Jan 202500:00	–	bdu_fstec
Circl	CVE-2024-52893	7 Jan 202512:16	–	circl
CNNVD	IBM Concert 安全漏洞	7 Jan 202500:00	–	cnnvd
CNVD	IBM Concert Information Disclosure Vulnerability (CNVD-2025-02548)	16 Jan 202500:00	–	cnvd
Cvelist	CVE-2024-52893 IBM Concert Software information disclosure	7 Jan 202512:00	–	cvelist
EUVD	EUVD-2024-46247	3 Oct 202520:07	–	euvd
NVD	CVE-2024-52893	7 Jan 202512:15	–	nvd
Positive Technologies	PT-2025-1196 · Ibm · Ibm Concert	6 Jan 202500:00	–	ptsecurity
RedhatCVE	CVE-2024-52893	23 May 202506:59	–	redhatcve
Vulnrichment	CVE-2024-52893 IBM Concert Software information disclosure	7 Jan 202512:00	–	vulnrichment

NVD

Vulners

Node

ibm concertMatch1.0.0

ibm concertMatch1.0.1

ibm concertMatch1.0.2

ibm concertMatch1.0.2.1

ibm concertMatch1.0.3

[
  {
    "cpes": [
      "cpe:2.3:a:ibm:concert:1.0.0:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:concert:1.0.1:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:concert:1.0.2:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:concert:1.0.2.1:*:*:*:*:*:*:*",
      "cpe:2.3:a:ibm:concert:1.0.3:*:*:*:*:*:*:*"
    ],
    "defaultStatus": "unaffected",
    "product": "Concert Software",
    "vendor": "IBM",
    "versions": [
      {
        "status": "affected",
        "version": "1.0.0, 1.0.1, 1.0.2, 1.0.2.1, 1.0.3"
      }
    ]
  }
]

Source	Link
ibm	www.ibm.com/support/pages/node/7180303

17 Jun 2026 08:07Current

5Medium risk

Vulners AI Score5

CVSS 3.15.3

EPSS0.00375

SSVC

CWE-209