CVE-2026-8175
published 2026-05-27CVE-2026-8175: IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could be exploited to cause a denial of service and potentially lead to authentication bypass or remote code execution.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ibm | aspera_high-speed_transfer_endpoint | 3.7.4 – 4.4.7 Fix Pack 1 | — |
| ibm | aspera_high-speed_transfer_server | 3.7.4 – 4.4.7 Fix Pack 1 | — |