VYPR
Unrated severityNVD Advisory· Published Jan 29, 2025· Updated Feb 12, 2025

IBM Aspera Faspex information disclosure

CVE-2023-37398

Description

IBM Aspera Faspex 5.0.0 through 5.0.10 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • IBM/Aspera Faspex 5cpe-rescue2 versions
    cpe:2.3:a:ibm:aspera_faspex:5.0.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:ibm:aspera_faspex:5.0.0:*:*:*:*:*:*:*range: 5.0.0
    • (no CPE)range: 5.0.0 - 5.0.10

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.