CVE-2023-24965

MEDIUM

IBM Aspera Faspex < 5.0.5 - Exposure to Wrong Actor

Title source: rule

Description

IBM Aspera Faspex 5.0.5 does not restrict or incorrectly restricts access to a resource from an unauthorized actor. IBM X-Force ID: 246713.

References (2)

Scores

CVSS v3 5.8
EPSS 0.0006
EPSS Percentile 18.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N

Classification

CWE
CWE-668
Status published

Affected Products (1)

ibm/aspera_faspex < 5.0.5

Timeline

Published Sep 08, 2023
Tracked Since Feb 18, 2026