CVE-2024-45096

Name of the Vulnerable Software and Affected Versions IBM Aspera Faspex versions 5.0.0 through 5.0.9

Description A user with access to the package can obtain sensitive information through a directory listing. This issue affects users with package access, allowing them to get sensitive details.

Recommendations For versions 5.0.0 through 5.0.9, consider restricting access to sensitive directories to minimize the risk of exploitation. As a temporary workaround, limit the directory listing functionality until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.