CVE-2024-41757 – IBM Concert Software Insecure SSL/TLS Information Disclosure

CVE ID : CVE-2024-41757

Published : Jan. 24, 2025, 4:15 p.m. | 1 hour, 2 minutes ago

Description : IBM Concert Software 1.0.0 and 1.0.1 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques.

Severity: 5.9 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2024-41757 – IBM Concert Software Insecure SSL/TLS Information Disclosure