IBM Aspera is a set of fast file transfer and streaming solutions built on the IBM FASP protocol from International Business Machines (IBM). An information disclosure vulnerability exists in IBM Aspera Faspex, which can be exploited by an attacker to obtain sensitive credential information using specially crafted XML input.