CVE-2023-24965

MEDIUM

IBM Aspera Faspex < 5.0.5 - Exposure to Wrong Actor

Title source: rule
STIX 2.1

Description

IBM Aspera Faspex 5.0.5 does not restrict or incorrectly restricts access to a resource from an unauthorized actor. IBM X-Force ID: 246713.

References (2)

Scores

CVSS v3 5.8
EPSS 0.0006
EPSS Percentile 18.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-668
Status published
Products (1)
ibm/aspera_faspex < 5.0.5
Published Sep 08, 2023
Tracked Since Feb 18, 2026