CVE-2023-30995
published 2023-09-08CVE-2023-30995: IBM Aspera Faspex 4.0 through 4.4.2 and 5.0 through 5.0.5 could allow a malicious actor to bypass IP whitelist restrictions using a specially crafted HTTP…
high7.5CVSS 3.1
AVNACLPRNUINSUCNIHAN
IBM Aspera Faspex 4.0 through 4.4.2 and 5.0 through 5.0.5 could allow a malicious actor to bypass IP whitelist restrictions using a specially crafted HTTP request. IBM X-Force ID: 254268.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | aspera_faspex | <= 5.0.5 | — |
| ibm | aspera_faspex | 4.0 – 4.4.2 | — |
| ibm | aspera_faspex | 5.0 – 5.0.5 | — |