216.73.216.133

CVE-2023-37401

· Published 09/10/2025 14:15 · Modified 09/10/2025 15:50

Labels: CVE-2023-37401 2025-10-09CVE-2023-37401CWE-942[email protected]

Essential information

Published
09/10/2025 14:15
Modified
09/10/2025 15:50
Author
Creator
CVSS
5.3 MEDIUM (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CVSS metrics

Description

IBM Aspera Faspex 5.0.0 through 5.0.13.1 uses a cross-domain policy file that includes domains that should not be trusted.

NVD status

Status
Undergoing Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
ibm / aspera faspex cpe:2.3:a:ibm:aspera_faspex:5.0.0-5.0.13.1:*:*:*:*:*:*:*

References