8 matches found
EUVD-2020-25792
Malware in sbrugna...
EUVD-2023-26972
Malicious code in bioql PyPI...
EUVD-2023-31063
Malicious code in bioql PyPI...
CVE-2023-27285
IBM Aspera Connect 4.2.5 and IBM Aspera Cargo 4.2.5 is vulnerable to a buffer overflow, caused by improper bounds checking. An attacker could overflow a buffer and execute arbitrary code on the system. IBM X-Force ID: 248625...
Security Bulletin: Denial of service vulnerability affecting Aspera Connect 3.7 or 3.8
Summary A vulnerability, if exploited, could disable or impair the use of certain versions of Aspera Connect. UPDATE 12/9/2019: The certificate for local.connectme.us has been revoked, as a result, Aspera Connect 3.7 and 3.8 no longer function on Firefox and Safari. The web application integrated...
Security Bulletin: Improper DLL loading vulnerability affecting Aspera Connect 3.9.9 and earlier
Summary IBM Aspera Connect could allow a local attacker to execute arbitrary code on the Windows system, caused by improper loading of Dynamic Link Libraries by the import feature. By persuading a victim to open a specially-crafted .DLL file, an attacker could exploit this vulnerability to execut...
Design/Logic Flaw
IBM Aspera Connect 3.9.9 could allow a remote attacker to execute arbitrary code on the system, caused by improper loading of Dynamic Link Libraries by the import feature. By persuading a victim to open a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitra...
CVE-2020-4545
IBM Aspera Connect 3.9.9 could allow a remote attacker to execute arbitrary code on the system, caused by improper loading of Dynamic Link Libraries by the import feature. By persuading a victim to open a specially-crafted .DLL file, an attacker could exploit this vulnerability to execute arbitra...