CNNVD-202509-4091 Information

CNNVD ID

CNNVD-202509-4091

Related CVE

CVE-2025-36274

• CNNVD Published: 2025-09-26

Description (Chinese)

IBM Aspera HTTP Gateway是美国国际商业机器（IBM）公司的一个大文件传输组件。 IBM Aspera HTTP Gateway 2.3.1及之前版本存在安全漏洞，该漏洞源于以明文存储敏感信息，可能导致未经验证的用户读取。

Description (English)

IBM Aspera HTTP Gateway is a large file transfer component of IBM. The IBM Aspera HTTP Gateway 2.3.1 and previous versions have a security loophole, which originates in the explicit storage of sensitive information and may lead to unverified user access.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-09-26

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7246284 https://access.redhat.com/security/cve/cve-2025-36274

Patch

https://www.ibm.com/support/pages/node/7246284