3 matches found
CVE-2022-22405
IBM Aspera Faspex 5.0.5 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 222576...
CVE-2022-22405
IBM Aspera Faspex 5.0.5 could allow a remote attacker to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man in the middle techniques. IBM X-Force ID: 222576...
CVE-2022-22405
CVE-2022-22405 affects IBM Aspera Faspex 5.0.5 and prior, caused by failure to properly enable HTTP Strict Transport Security. This allows a remote attacker to obtain sensitive information via MITM techniques (confidentiality impact C:H, CVSS 3.1 base 5.9). Connected sources confirm the issue and...