aspera_faspex

5.05

MAJOR_MINOR 2 CVEs

0

SINGLE_NUMBER 2 CVEs

4.4.2

SEMANTIC 1 CVE

5.0.0

SEMANTIC 4 CVEs

4.0

MAJOR_MINOR 1 CVE

5.0.7

SEMANTIC 1 CVE

5.0

MAJOR_MINOR 1 CVE

5.0.5

SEMANTIC 2 CVEs

CVE-2022-40745

IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information due to weaker than expected security. IBM X-Force ID: 236452.

MEDIUM Apr 19, 2024

CVE-2023-37397

IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain or modify sensitive information due to improper encryption of certain data. IBM X-Force ID: 259672.

LOW Apr 19, 2024

CVE-2023-27279

IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a user to cause a denial of service due to missing API rate limiting. IBM X-Force ID: 248533.

MEDIUM Apr 19, 2024

CVE-2023-37400

IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to escalate their privileges due to insecure credential storage. IBM X-Force ID: 259677.

HIGH Apr 19, 2024