ByteOS Network

CVE Vulnerability Details :

CVE-2026-6499

PUBLISHED

More Info Official Page

Assigner-TCS-CERT

Assigner Org ID-64c5ae8f-7972-4697-86a0-7ada793ac795

Published At-04 May, 2026 | 14:08

Updated At-04 May, 2026 | 14:08

▼CVE Numbering Authority (CNA)

Incorrect Permission Assignment for Critical Resource vulnerability in ILM Informatique OpenConcerto allows Replace Binaries. This issue affects OpenConcerto: 1.7.5.

Affected Products

Vendor

ILM Informatique

Product

OpenConcerto

Default Status

unknown

Versions

Affected

1.7.5

Problem Types

Type	CWE ID	Description
CWE	CWE-732	CWE-732: Incorrect Permission Assignment for Critical Resource

Type: CWE

CWE ID: CWE-732

Description: CWE-732: Incorrect Permission Assignment for Critical Resource

Metrics

Version	Base score	Base severity	Vector
4.0	2.4	LOW	CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Version: 4.0

Base score: 2.4

Base severity: LOW

Vector:

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N

Impacts

CAPEC ID	Description
CAPEC-642	CAPEC-642 Replace Binaries

CAPEC ID: CAPEC-642

Description: CAPEC-642 Replace Binaries

Credits

finder

Dominique Righetto

References

Hyperlink	Resource
https://www.openconcerto.org/fr/version-1.7.html	product

Hyperlink: https://www.openconcerto.org/fr/version-1.7.html

Resource:

product

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References