CVE-2025-36081

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-36081
IBM Concert Software 1.0.0 through 2.0.0 could allow a user to modify system logs due to improper neutralization of log input.

5.3 /10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact LOW

Availability Impact NONE

Scope UNCHANGED

References
Link Resource
https://www.ibm.com/support/pages/node/7249356 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:ibm:concert:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
History

31 Oct 2025, 19:01

Type Values Removed Values Added
First Time Linux linux Kernel
Linux
Ibm concert
Ibm
References () https://www.ibm.com/support/pages/node/7249356 - () https://www.ibm.com/support/pages/node/7249356 - Vendor Advisory
CPE cpe:2.3:a:ibm:concert:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*

28 Oct 2025, 15:16

Type Values Removed Values Added
New CVE
Information

Published : 2025-10-28 15:16

Updated : 2025-10-31 19:01

NVD link : CVE-2025-36081

Mitre link : CVE-2025-36081

CVE.ORG link : CVE-2025-36081

JSON object : View

Products Affected

ibm

  • concert

linux

  • linux_kernel
CWE
CWE-117

Improper Output Neutralization for Logs