PT-2025-31461 · Ibm · Ibm Aspera Faspex
Published
2025-07-29
·
Updated
2025-07-31
·
CVE-2025-36040
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:L/Au:S/C:N/I:C/A:N |
Name of the Vulnerable Software and Affected Versions
IBM Aspera Faspex versions 5.0.0 through 5.0.12.1
Description
The software may allow an authenticated user to perform unauthorized actions due to client-side enforcement of server-side security mechanisms.
Recommendations
Update to a version beyond 5.0.12.1.
Fix
Insufficient Session Expiration
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Ibm Aspera Faspex