Lucene search
K

122 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/06/18 5:57 p.m.13 views

Security Bulletin: Multiple OpenSSL vulnerabilities affect IBM Aspera Shares 1.9.4 or earlier and IBM Aspera Console 3.0.6 or earlier

Question Security Bulletin: Multiple OpenSSL vulnerabilities affect IBM Aspera Shares 1.9.4 or earlier and IBM Aspera Console 3.0.6 or earlier "Business Unit":"code":"BU059","label":"IBM Software w/o TPS","Product":"code":"SS8NDZ","label":"IBM...

5.4AI score
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/04/16 10:21 p.m.7 views

Security Bulletin: Multiple vulnerabilities in IBM Aspera Console

Summary Multiple vulnerabilities were addressed in IBM Aspera Console version 3.4.10 Vulnerability Details CVEID:CVE-2026-26961 DESCRIPTION: Rack is a modular Ruby web server interface. Prior to versions 2.2.23, 3.1.21, and 3.2.6, Rack::Multipart::Parser extracts the boundary parameter from...

7.5CVSS5.8AI score0.0043EPSS
Exploits0Affected Software5
RedhatCVE
RedhatCVE
added 2026/03/26 3:13 p.m.5 views

CVE-2025-13460

IBM Aspera Console 3.3.0 through 3.4.8 could allow an attacker to enumerate usernames due to an observable response discrepancy...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/19 12:0 a.m.6 views

IBM Aspera Console Denial of Service Vulnerability (CNVD-2026-19449)

IBM Aspera Console is a Web-based application from International Business Machines IBM. Allows users to centrally manage, monitor and control Aspera servers nodes and transports. A denial of service vulnerability exists in IBM Aspera Console, which can be exploited by an attacker to cause a denia...

4.9CVSS5.8AI score0.00422EPSS
Exploits0
EUVD
EUVD
added 2026/03/16 3:30 p.m.4 views

EUVD-2025-208657

IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency...

5.3CVSS5.8AI score0.0027EPSS
Exploits0References2
NVD
NVD
added 2026/03/16 2:17 p.m.2 views

CVE-2025-13459

IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow...

4.9CVSS0.00422EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/16 12:0 a.m.8 views

IBM Aspera Console 安全漏洞

IBM Aspera Console is a Web-based application from International Business Machines IBM. Allows users to centrally manage, monitor and control Aspera servers nodes and transports. An information disclosure vulnerability exists in IBM Aspera Console, which can be exploited by an attacker to enumera...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/13 7:54 p.m.2 views

CVE-2025-13212 IBM Aspera Console Denial of Service

IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency...

5.3CVSS5.8AI score0.0027EPSS
Exploits0References1
CVE
CVE
added 2026/03/13 7:54 p.m.12 views

CVE-2025-13212

CVE-2025-13212 affects IBM Aspera Console versions 3.3.0–3.4.8, where an authenticated user can induce a denial of service in the email service due to improper control of interaction frequency (CWE-799). The Red Hat and CVE lists corroborate this DoS impact; IBM’s advisory confirms the affected r...

5.3CVSS5.8AI score0.0027EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/13 7:54 p.m.2 views

CVE-2025-13212

IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency...

5.3CVSS5.8AI score0.0027EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/03/13 7:54 p.m.31 views

CVE-2025-13212 IBM Aspera Console Denial of Service

IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency...

5.3CVSS0.0027EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 7:54 p.m.32 views

CVE-2025-13459 IBM Aspera Console Denial of Service

IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow...

2.7CVSS0.00422EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/13 7:54 p.m.29 views

CVE-2025-13460 IBM Aspera Console Information Disclosure

IBM Aspera Console 3.3.0 through 3.4.8 could allow an attacker to enumerate usernames due to an observable response discrepancy...

5.3CVSS0.0024EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/13 7:54 p.m.5 views

CVE-2025-13460 IBM Aspera Console Information Disclosure

IBM Aspera Console 3.3.0 through 3.4.8 could allow an attacker to enumerate usernames due to an observable response discrepancy...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.8 views

PT-2026-25368

CVE-2025-13212 IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction freq… https://t.co/nwziIco8rT...

5.3CVSS5.8AI score0.0027EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/03/13 12:0 a.m.9 views

PT-2026-25370

CVE-2025-13460 IBM Aspera Console 3.3.0 through 3.4.8 could allow an attacker to enumerate usernames due to an observable response discrepancy. https://t.co/sTiAd3lLOs...

5.3CVSS5.8AI score0.0024EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/12 8:43 p.m.8 views

Security Bulletin: Multiple vulnerabilities in IBM Aspera Console

Summary Multiple vulnerabilities were addressed in IBM Aspera Console version 3.4.9 Vulnerability Details CVEID:CVE-2025-13459 DESCRIPTION: IBM Aspera Console could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow. CWE:CWE-841: Improper...

7.5CVSS5.9AI score0.00665EPSS
Exploits2Affected Software5
OSV
OSV
added 2026/02/05 2:16 p.m.5 views

CVE-2025-13379

IBM Aspera Console 3.4.0 through 3.4.8 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database...

8.6CVSS5.9AI score0.00351EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/05 1:30 p.m.28 views

CVE-2025-13379 A SQL Injection vulnerability has been addressed in IBM Aspera Console

IBM Aspera Console 3.4.0 through 3.4.8 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify, or delete information in the back-end database...

8.6CVSS0.00351EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.6 views

PT-2026-6553

Name of the Vulnerable Software and Affected Versions IBM Aspera Console versions 3.4.0 through 3.4.8 Description The software is susceptible to a SQL injection issue. A remote attacker could potentially send crafted SQL statements to access, modify, or delete data within the back-end database. T...

8.6CVSS5.7AI score0.00351EPSS
Exploits0References8
Rows per page
Query Builder