Return to CVE list

CVE-2025-3423

5.4
Medium

CVE-2025-3423

psirt@us.ibm.com
Awaiting Analysis
View on MITREFind on GitHub

Description

IBM Aspera Faspex 5.0.0 through 5.0.11 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

psirt@us.ibm.com
https://www.ibm.com/support/pages/node/7230757