CVE-2023-37395

Severity

3.3LOW

EPSS

0.0%

top 88.53%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedDec 11

Description

IBM Aspera Faspex 5.0.0 through 5.0.7 could allow a local user to obtain sensitive information due to improper encryption of certain data.

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.0 | Impact: 1.4

▶CVEListV5ibm/aspera_faspex5.0.0 — 5.0.7

▶NVDibm/aspera_faspex5.0.0 — 5.0.7

CVEList

IBM Aspera Faspex information disclosure↗2024-12-11

▶

GHSA

GHSA-f2qv-vx92-pq7c: IBM Aspera Faspex 5↗2024-12-11

▶