CVE-2023-22862
5.9MEDIUMIBM Aspera Connect 4.2.5 and IBM Aspera Cargo 4.2.5 transmits authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
Published: 6/5/2023Updated: 11/21/2024
Description
IBM Aspera Connect 4.2.5 and IBM Aspera Cargo 4.2.5 transmits authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.
AI AnalysisPowered by AI
Affected Products
ibmaspera_cargo
ibmaspera_connect
References
- https://www.ibm.com/support/pages/node/7001053PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/244107
- https://www.ibm.com/support/pages/node/7001053PatchVendor Advisory