4 matches found
CVE-2025-33136
IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to improper protection of assumed immutable data...
CVE-2025-33136
CVE-2025-33136 affects IBM Aspera Faspex 5 (versions 5.0.0–5.0.12). The issue is due to improper protection of assumed immutable data (MAID), enabling an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user. According to IBM’s advisory, reme...
CVE-2025-33136 IBM Aspera Faspex data modification
IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to improper protection of assumed immutable data...
Security Bulletin: IBM Aspera Faspex is affected by user input sanitization and HTML injection vulnerabilities
Summary IBM Aspera Faspex has addressed input sanitization and HTML injection vulnerabilities CVE-2025-33137, CVE-2025-33136, CVE-2025-33138 Vulnerability Details CVEID:CVE-2025-33137 DESCRIPTION: IBM Aspera Faspex 5 could allow an authenticated user to obtain sensitive information or perform...