Vulnerability Details CVE-2025-33136
IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to improper protection of assumed immutable data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.1%
CVSS Severity
CVSS v3 Score 7.1
Products affected by CVE-2025-33136
-
cpe:2.3:a:ibm:aspera_faspex:5.0.0
-
cpe:2.3:a:ibm:aspera_faspex:5.0.1
-
cpe:2.3:a:ibm:aspera_faspex:5.0.10
-
cpe:2.3:a:ibm:aspera_faspex:5.0.2
-
cpe:2.3:a:ibm:aspera_faspex:5.0.3
-
cpe:2.3:a:ibm:aspera_faspex:5.0.4
-
cpe:2.3:a:ibm:aspera_faspex:5.0.5
-
cpe:2.3:a:ibm:aspera_faspex:5.0.6
-
cpe:2.3:a:ibm:aspera_faspex:5.0.7
-
cpe:2.3:a:ibm:aspera_faspex:5.0.8
-
cpe:2.3:o:linux:linux_kernel:-