CNNVD-202510-1291 Information

CNNVD ID

CNNVD-202510-1291

Related CVE

CVE-2025-36171

• CNNVD Published: 2025-10-09

Description (Chinese)

IBM Aspera Faspex是美国国际商业机器（IBM）公司的一种用于快速的全球个人对个人文件交付和协作的解决方案。 IBM Aspera Faspex 5.0.0版本至5.0.13.1版本存在安全漏洞，该漏洞源于API输入验证不当导致资源消耗过度，可能导致拒绝服务。

Description (English)

IBM Aspera Faspex is a solution for fast-tracking individual-to-personal document delivery and collaboration by the United States International Business Machine (IBM). The security gap between IBM Aspera Faspex 5.0.0 and 5.0.13.1 results from over-consumption of resources as a result of incorrect API input validation, which may lead to the denial of services.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-10-09

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7247502 https://access.redhat.com/security/cve/cve-2025-36171

Patch

https://www.ibm.com/support/pages/node/7247502