How severe is CVE-2025-36229?

CVE-2025-36229 has a CVSS v3 score of 3.1 (LOW).

CVE-2025-36229

Name: aspera_faspex
Author: ibm

3.1LOW

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 could allow authenticated users to enumerate sensitive information of data due by enumerating package identifiers.

Published: 12/26/2025Updated: 12/29/2025

Description

IBM Aspera Faspex 5 5.0.0 through 5.0.14.1 could allow authenticated users to enumerate sensitive information of data due by enumerating package identifiers.

AI AnalysisPowered by AI

Affected Products

ibmaspera_faspex

References

https://www.ibm.com/support/pages/node/7255331
Vendor Advisory