Aspera High Speed Transfer Server

aspera_high-speed_transfer_server

Vendor: Ibm • 6 CVEs

CVEs (6)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-22391 1Ibm 2Aspera High Speed Transfer Endpoint Aspera High Speed Transfer Server Nov 21, 2024 Apr 14, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 IBM Aspera High-Speed Transfer 4.3.1 and earlier could allow an authenticated user to obtain information from non sensitive operating system files that they should not have access to. IBM X-Force ID: 222059.
CVE-2020-4436 1Ibm 10Aspera Application Platform On Demand Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more Nov 21, 2024 Jun 10, 2020 N/A· v4 7.5 HIGH· v3 6.0 MEDIUM· v2 Certain IBM Aspera applications are vulnerable to buffer overflow after valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code through a service. IBM X-Force I...Show more Certain IBM Aspera applications are vulnerable to buffer overflow after valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code through a service. IBM X-Force ID: 180902.Show less
CVE-2020-4435 1Ibm 10Aspera Application Platform On Demand Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more Nov 21, 2024 Jun 10, 2020 N/A· v4 7.5 HIGH· v3 6.0 MEDIUM· v2 Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a...Show more Certain IBM Aspera applications are vulnerable to arbitrary memory corruption based on the product configuration, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180901.Show less
CVE-2020-4434 1Ibm 10Aspera Application Platform On Demand Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more Nov 21, 2024 Jun 10, 2020 N/A· v4 7.5 HIGH· v3 6.0 MEDIUM· v2 Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code...Show more Certain IBM Aspera applications are vulnerable to buffer overflow based on the product configuration and valid authentication, which could allow an attacker with intimate knowledge of the system to execute arbitrary code or perform a denial-of-service (DoS) through the http fallback service. IBM X-Force ID: 180900.Show less
CVE-2020-4433 1Ibm 10Aspera Application Platform On Demand Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more Nov 21, 2024 Jun 10, 2020 N/A· v4 7.5 HIGH· v3 9.3 HIGH· v2 Certain IBM Aspera applications are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker with intimate knowledge of the server to execute arbitrary code on t...Show more Certain IBM Aspera applications are vulnerable to a stack-based buffer overflow, caused by improper bounds checking. This could allow a remote attacker with intimate knowledge of the server to execute arbitrary code on the system with the privileges of root or cause server to crash. IBM X-Force ID: 180814.Show less
CVE-2020-4432 1Ibm 10Aspera Application Platform On Demand Aspera Faspex On DemandAspera High Speed Transfer Endpoint+7 more Nov 21, 2024 Jun 10, 2020 N/A· v4 7.5 HIGH· v3 6.0 MEDIUM· v2 Certain IBM Aspera applications are vulnerable to command injection after valid authentication, which could allow an attacker with intimate knowledge of the system to execute commands in a SOAP API. IBM X-Force ID: 18081...Show more Certain IBM Aspera applications are vulnerable to command injection after valid authentication, which could allow an attacker with intimate knowledge of the system to execute commands in a SOAP API. IBM X-Force ID: 180810.Show less