IBM Aspera is a set of fast file transfer and streaming solutions built on the IBM FASP protocol from International Business Machines (IBM). An information disclosure vulnerability exists in IBM Aspera Faspex, which stems from a failure to properly enable HTTP Strict Transfer security, and can be exploited by an attacker to obtain sensitive information.