Vulnerability Details CVE-2026-8179
IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could allow an authenticated user to execute arbitrary code on the system.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.6%
CVSS Severity
CVSS v3 Score 8.8
Products affected by CVE-2026-8179
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_endpoint:3.9.3
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_endpoint:3.9.6
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_endpoint:4.0.0
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_endpoint:4.3.1
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_endpoint:4.3.2
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_endpoint:4.4.7
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_server:3.9.3
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_server:3.9.6
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_server:4.0.0
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_server:4.3.1
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_server:4.3.2
-
cpe:2.3:a:ibm:aspera_high-speed_transfer_server:4.4.7