Aspera Faspex CVE Vulnerabilities

By Ibm3 known vulnerabilities

Critical
0
High
0
Medium
1
Low
2
None
0

All Aspera Faspex CVEs

Recent Highest Score Oldest
CVE-2025-36230
5.4 medium

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site.

Dec 26, 2025
CVE-2025-36229
3.1 low

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 could allow authenticated users to enumerate sensitive information of data due by enumerating package identifiers.

Dec 26, 2025
CVE-2025-36228
3.8 low

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 may allow inconsistent permissions between the user interface and backend API allowed users to access features that appeared disabled, potentially leading to misuse.

Dec 26, 2025