2 matches found
Security Bulletin: IBM Aspera Faspex 5.0.x affected by vulnerability (CVE-2022-22403)
Summary Aspera Faspex 5.0.2 has addressed the following vulnerability. Vulnerability Details CVEID:CVE-2022-22403 DESCRIPTION: IBM Aspera Faspex 5 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link...
IBM Aspera 安全漏洞
IBM Aspera is a set of fast file transfer and streaming solutions built on the IBM FASP protocol from the U.S. IBM Aspera Faspex versions 4.4.1 and 5.0.0 have an access control error vulnerability that stems from a miscalculated security token, which could be exploited by an attacker for...