CVE 2.4 LOW

CVE-2026-6499_CVE-2026-6499

May 4, 2026 invoker category_cve
2.4 / 10
LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Description

Incorrect Permission Assignment for Critical Resource vulnerability in ILM Informatique OpenConcerto allows Replace Binaries.

This issue affects OpenConcerto: 1.7.5.

Basic Information

ID CVE-2026-6499
Source TCS-CERT
Published May 4, 2026 at 14:08
Modified May 4, 2026 at 14:43

Affected Product

Vendor ILM Informatique
Product OpenConcerto
Version 1.7.5
Affected Versions ILM Informatique OpenConcerto 1.7.5

CWE Classification

CWE-732

References

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.