Aspera Console Vulnerability Allows Web Pages to be Stored Locally

CVE-2022-43841

4MEDIUM

Key Information

Vendor: IBM
Status: Aspera Console
Vendor: Published:; 30 May 2024

Summary

IBM Aspera Console 3.4.0 through 3.4.2 PL9 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 239078.

Affected Version(s)

Aspera Console = 3.4.0 - 3.4.2 PL9

CVSS V3.1

Score:

Severity:

MEDIUM

Confidentiality:

LOW

Integrity:

NONE

Availability:

NONE

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Timeline

Vulnerability published.
May 30, 2024
Vulnerability Reserved.
Oct 26, 2022

Collectors

NVD DatabaseMitre Database