Vulnerability Details CVE-2025-36225
IBM Aspera 5.0.0 through 5.0.13.1
could disclose sensitive user information from the system to an authenticated user due to an observable discrepancy of returned data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.4%
CVSS Severity
CVSS v3 Score 4.3
Products affected by CVE-2025-36225
-
cpe:2.3:a:ibm:aspera_faspex:5.0.0
-
cpe:2.3:a:ibm:aspera_faspex:5.0.1
-
cpe:2.3:a:ibm:aspera_faspex:5.0.10
-
cpe:2.3:a:ibm:aspera_faspex:5.0.2
-
cpe:2.3:a:ibm:aspera_faspex:5.0.3
-
cpe:2.3:a:ibm:aspera_faspex:5.0.4
-
cpe:2.3:a:ibm:aspera_faspex:5.0.5
-
cpe:2.3:a:ibm:aspera_faspex:5.0.6
-
cpe:2.3:a:ibm:aspera_faspex:5.0.7
-
cpe:2.3:a:ibm:aspera_faspex:5.0.8
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-