PT-2025-22641 · Unknown · Matrix Series+2
Published
2025-05-23
·
Updated
2025-05-23
·
CVE-2024-13945
CVSS v3.1
6.0
Medium
| Vector | AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:L |
Name of the Vulnerable Software and Affected Versions
ASPECT-Enterprise versions through 3.*
NEXUS Series versions through 3.*
MATRIX Series versions through 3.*
Description
The issue is related to Stored Absolute Path Traversal vulnerabilities in ASPECT, which could expose sensitive data if administrator credentials become compromised.
Recommendations
For ASPECT-Enterprise versions through 3., update to a version that fixes the Stored Absolute Path Traversal vulnerability.
For NEXUS Series versions through 3., update to a version that fixes the Stored Absolute Path Traversal vulnerability.
For MATRIX Series versions through 3.*, update to a version that fixes the Stored Absolute Path Traversal vulnerability.
As a temporary workaround, consider restricting access to sensitive data and administrator credentials to minimize the risk of exploitation.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aspect-Enterprise
Matrix Series
Nexus Series