CVE-2025-36274
IBM Aspera HTTP Gateway (versions 2.0.0–2.3.1) is vulnerable to information disclosure: sensitive data stored in clear text in easily obtainable files that unauthenticated users can read. The CVE-2025-36274 entry specifies CWE-312 and a CVSS v3.1 base score of 7.5 (NETWORK, LOW attack complexity,...