Lucene search
IbmCVE-2023-22869HistoryApr 19, 2024 - 4:15 p.m.
CVE-2023-22869
2024-04-1916:15:09
CWE-532
ibm
web.nvd.nist.gov
43
ibm
aspera faspex
sensitive information
log files
local user
security vulnerability
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.5
Confidence
Low
EPSS
0
Percentile
9.0%
IBM Aspera Faspex 5.0.0 through 5.0.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 244119.
Affected configurations
Node
ibmaspera_faspexRange5.0.0–5.0.7
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ibm | aspera_faspex | * | cpe:2.3:a:ibm:aspera_faspex:*:*:*:*:*:*:*:* |
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "Aspera Faspex",
"vendor": "IBM",
"versions": [
{
"lessThanOrEqual": "5.0.7",
"status": "affected",
"version": "5.0.0",
"versionType": "semver"
}
]
}
]Related
cvelist
cvelist
CVE-2023-22869 IBM Aspera Faspex information disclosure
2024-04-19 15:48:02
nvd
nvd
CVE-2023-22869
2024-04-19 16:15:09
vulnrichment
vulnrichment
CVE-2023-22869 IBM Aspera Faspex information disclosure
2024-04-19 15:48:02
ibm
ibm
CVSS3
5.5
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
AI Score
5.5
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2023-22869