PT-2026-43988 · Ibm · Aspera High-Speed Transfer Endpoint+1

Yannik Marchand

Published

2026-05-27

Updated

2026-06-05

CVE-2026-8179

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions IBM Aspera High-Speed Transfer Endpoint versions 3.7.4 through 4.4.7 Fix Pack 1 IBM Aspera High-Speed Transfer Server versions 3.7.4 through 4.4.7 Fix Pack 1

Description A buffer overflow exists in the asperahttpd component. This issue allows an authenticated user to execute arbitrary code on the system. A buffer overflow occurs when a program writes more data to a block of memory, or buffer, than it is designed to hold, potentially overwriting adjacent memory locations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Stack Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-121

Related Identifiers

CVE-2026-8179

Affected Products

Aspera High-Speed Transfer Endpoint

Aspera High-Speed Transfer Server

PT-2026-43988 · Ibm · Aspera High-Speed Transfer Endpoint+1

CVE-2026-8179

Weakness Enumeration

Related Identifiers

Affected Products

References · 3