Описание
IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to client-side enforcement of server-side security.
Ссылки
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 5.0.0 (включая) до 5.0.12.1 (исключая)
Одновременно
cpe:2.3:a:ibm:aspera_faspex:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
EPSS
Процентиль: 19%
0.00061
Низкий
7.1 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-602
NVD-CWE-Other
Связанные уязвимости
CVSS3: 7.1
github
9 месяцев назад
IBM Aspera Faspex 5.0.0 through 5.0.12 could allow an authenticated user to obtain sensitive information or perform unauthorized actions on behalf of another user due to client-side enforcement of server-side security.
EPSS
Процентиль: 19%
0.00061
Низкий
7.1 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-602
NVD-CWE-Other