2 matches found
Security Bulletin: cURL vulnerability CVE-2019-10789 impacts IBM Aspera High-Speed Transfer Server 3.9.6.2 and earlier and Aspera High-Speed Transfer Endpoint 3.9.6.2 and earlier
Summary Security Bulletin: cURL vulnerability CVE-2019-10789 impacts IBM Aspera High-Speed Transfer Server 3.9.6.2 and earlier and Aspera High-Speed Transfer Endpoint 3.9.6.2 and earlier. The fix was delivered in IBM Aspera High-Speed Transfer Server 4.0.0 and Aspera High-Speed Transfer Endpoint...
CVE-2019-10789
CVE-2019-10789 is a command-injection flaw in the curling.js library triggered via the run function, where the command argument is not sanitized. The vulnerability is described across multiple sources as affecting all versions of curling.js (as stated by the NVD entry). The issue is severe (CVSS ...