CNNVD-202510-1294 Information

CNNVD ID

CNNVD-202510-1294

Related CVE

CVE-2023-37401

• CNNVD Published: 2025-10-09

Description (Chinese)

IBM Aspera Faspex是美国国际商业机器（IBM）公司的一种用于快速的全球个人对个人文件交付和协作的解决方案。 IBM Aspera Faspex 5.0.0版本至5.0.13.1版本存在安全漏洞，该漏洞源于跨域策略文件包含不应信任的域。

Description (English)

IBM Aspera Faspex is a solution for fast-tracking individual-to-personal document delivery and collaboration by the United States International Business Machine (IBM). There is a security loophole in versions 5.0.0 to 5.0.13.1 of IBM Aspera Faspex, which stems from the fact that the cross-domain strategy document contains untrustworthy domains.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-10-09

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7247502 https://access.redhat.com/security/cve/cve-2023-37401

Patch

https://www.ibm.com/support/pages/node/7247502