Vulnerability Details CVE-2025-13148
IBM Aspera Orchestrator 4.0.0 through 4.1.0 could allow could an authenticated user to change the password of another user without prior knowledge of that password.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.2%
CVSS Severity
CVSS v3 Score 8.1
Products affected by CVE-2025-13148
-
cpe:2.3:a:ibm:aspera_orchestrator:4.0.1
-
cpe:2.3:o:linux:linux_kernel:-