Unrated severityNVD Advisory· Published Feb 5, 2025· Updated Feb 22, 2025
IBM Aspera Shares Cross-Site Scripting
CVE-2024-38317
Description
IBM Aspera Shares 1.9.0 through 1.10.0 PL6 is vulnerable to cross-site scripting. This vulnerability allows a privileged user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
21.9.0 through 1.10.0 PL6+ 1 more
- (no CPE)range: 1.9.0 through 1.10.0 PL6
- (no CPE)range: 1.9.0
Patches
Vulnerability mechanics
References
1- www.ibm.com/support/pages/node/7182490mitrevendor-advisory
News mentions
0No linked articles in our index yet.