6 matches found
IBM Aspera Faspex 安全漏洞
IBM Aspera Faspex is an International Business Machines IBM solution for rapid global person-to-person document delivery and collaboration. A security vulnerability exists in IBM Aspera Faspex versions 5.0.0 through 5.0.13.1 that stems from a cross-domain policy file containing domains that shoul...
EUVD-2023-39899
Malicious code in bioql PyPI...
The vulnerability of the IBM Aspera Faspex file-sharing application, related to the lack of protection for website structures, allows attackers to perform cross-site scripting attacks.
The vulnerability of the IBM Aspera Faspex file-sharing application is related to the lack of security measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
CVE-2023-27871
IBM Aspera Faspex 4.4.2 could allow a remote attacker to obtain sensitive credential information for an external user, using a specially crafted SQL query. IBM X-Force ID: 249613...
IBM Aspera Security Vulnerability
IBM Aspera is a suite of fast file transfer and streaming solutions from International Business Machines IBM built on the IBM FASP protocol. A security vulnerability exists in IBM Aspera Faspex version 5.0.5, which stems from a vulnerability that could allow a remote attacker to collect or persua...
IceFire Ransomware Exploits IBM Aspera Faspex to Attack Linux-Powered Enterprise Networks
A previously known Windows-based ransomware strain known as IceFire has expanded its focus to target Linux enterprise networks belonging to several media and entertainment sector organizations across the world. The intrusions entail the exploitation of a recently disclosed deserialization...