CNNVD-202512-4835 Information

CNNVD ID

CNNVD-202512-4835

Related CVE

CVE-2025-36229

• CNNVD Published: 2025-12-26

Description (Chinese)

IBM Aspera Faspex是美国国际商业机器（IBM）公司的一种用于快速的全球个人对个人文件交付和协作的解决方案。 IBM Aspera Faspex 5 5.0.14.1及之前版本存在安全漏洞，该漏洞源于已验证用户可能通过枚举包标识符枚举敏感数据信息。

Description (English)

IBM Aspera Faspex is a solution for fast-tracking individual-to-personal document delivery and collaboration by the United States International Business Machine (IBM). IBM Aspera Faspex 5 5.0.14.1 and previous versions contain a security loophole, which stems from the possibility that a certified user may include sensitive data information through a packaged identifier.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

国际商业机器

Published

2025-12-26

Last Modified

2026-02-24

References

https://www.ibm.com/support/pages/node/7255331 https://access.redhat.com/security/cve/cve-2025-36229

Patch

https://www.ibm.com/support/pages/node/7255331