← Back

Aspera Faspex On Demand

aspera_faspex_on_demand

Vendor: Ibm • 5 CVEs

CVEs (5)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-4436
1Ibm
10Aspera Application Platform On Demand
Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more
Nov 21, 2024
Jun 10, 2020
N/A· v4
7.5 HIGH· v3
6.0 MEDIUM· v2
Certain IBM Aspera applications are vulnerable to buffer overflow after valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code through a service. IBM X-Force I...Show more
Certain IBM Aspera applications are vulnerable to buffer overflow after valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code through a service. IBM X-Force ID: 180902.Show less
CVE-2020-4435
1Ibm
10Aspera Application Platform On Demand
Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more
Nov 21, 2024
Jun 10, 2020
N/A· v4
7.5 HIGH· v3
6.0 MEDIUM· v2
Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a...Show more
Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180901.Show less
CVE-2020-4434
1Ibm
10Aspera Application Platform On Demand
Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more
Nov 21, 2024
Jun 10, 2020
N/A· v4
7.5 HIGH· v3
6.0 MEDIUM· v2
Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code...Show more
Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180900.Show less
CVE-2020-4433
1Ibm
10Aspera Application Platform On Demand
Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more
Nov 21, 2024
Jun 10, 2020
N/A· v4
7.5 HIGH· v3
9.3 HIGH· v2
Certain IBM Aspera applications are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker with intimate knowledge of the server to execute arbitrary code on t...Show more
Certain IBM Aspera applications are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker with intimate knowledge of the server to execute arbitrary code on the system with the privileges of root or cause server to crash. IBM X-Force ID: 180814.Show less
CVE-2020-4432
1Ibm
10Aspera Application Platform On Demand
Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more
Nov 21, 2024
Jun 10, 2020
N/A· v4
7.5 HIGH· v3
6.0 MEDIUM· v2
Certain IBM Aspera applications are vulnerable to command injection after valid authentication, which could allow an attacker with intimate knowledge of the system to execute commands in a SOAP API. IBM X-Force ID: 18081...Show more
Certain IBM Aspera applications are vulnerable to command injection after valid authentication, which could allow an attacker with intimate knowledge of the system to execute commands in a SOAP API. IBM X-Force ID: 180810.Show less