Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/24 5:18 p.m.13 views

CVE-2025-33136

IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to improper protection of assumed immutable data...

8.8CVSS6.1AI score0.00287EPSS
Exploits0References1
CVE
CVE
added 2025/05/22 4:14 p.m.67 views

CVE-2025-33136

CVE-2025-33136 affects IBM Aspera Faspex 5 (versions 5.0.0–5.0.12). The issue is due to improper protection of assumed immutable data (MAID), enabling an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user. According to IBM’s advisory, reme...

8.8CVSS6.6AI score0.00287EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/05/22 4:14 p.m.25 views

CVE-2025-33136 IBM Aspera Faspex data modification

IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to improper protection of assumed immutable data...

7.1CVSS0.00287EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/21 5:36 p.m.17 views

Security Bulletin: IBM Aspera Faspex is affected by user input sanitization and HTML injection vulnerabilities

Summary IBM Aspera Faspex has addressed input sanitization and HTML injection vulnerabilities CVE-2025-33137, CVE-2025-33136, CVE-2025-33138 Vulnerability Details CVEID:CVE-2025-33137 DESCRIPTION: IBM Aspera Faspex 5 could allow an authenticated user to obtain sensitive information or perform...

8.8CVSS6.7AI score0.00287EPSS
Exploits0Affected Software6
Rows per page
Query Builder