Ibm: >> Aspera Faspex >> 5.0.6 Security Vulnerabilities
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain or modify sensitive information due to improper encryption of certain data. IBM X-Force ID: 259672.
CVSS Score
3.6
EPSS Score
0.0
Published
2024-04-19
IBM Aspera Faspex 5.0.0 through 5.0.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 244119.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-04-19
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information due to improper encryption of certain data. IBM X-Force ID: 259671.
CVSS Score
2.5
EPSS Score
0.0
Published
2024-04-19
IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to escalate their privileges due to insecure credential storage. IBM X-Force ID: 259677.
CVSS Score
7.8
EPSS Score
0.0
Published
2024-04-19
IBM Aspera Faspex 5.0.6 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 236441.
CVSS Score
4.8
EPSS Score
0.001
Published
2024-02-02
Page 3