CNNVD-202602-854 Information
Feb 05, 2026
cve
CNNVD ID
CNNVD-202602-854
Related CVE
- CNNVD Published: 2026-02-05
Description (Chinese)
IBM Aspera Console是美国国际商业机器(IBM)公司的一个基于 Web 的应用程序。允许用户集中管理、监控和控制 Aspera 服务器(节点)和传输。 IBM Aspera Console 3.4.0版本至3.4.8版本存在SQL注入漏洞,该漏洞源于SQL注入,可能导致后端数据库信息被查看、添加、修改或删除。
Description (English)
IBM Aspera Console is a Web-based application of IBM. Allows users to centrally manage, monitor and control the Aspera server (node) and transfer. The IBM Aspera Consortium versions 3.4.0 to 3.4.8 contain an injection loophole in SQL, which originates from SQL injections and may lead to the viewing, addition, modification or deletion of back-end database information.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
国际商业机器
Published
2026-02-05
Last Modified
2026-02-24
References
https://www.ibm.com/support/pages/node/7259448
Patch
https://www.ibm.com/support/pages/node/7259448
Share on: