How severe is CVE-2022-43840?

CVE-2022-43840 has a CVSS v3 score of 4.3 (MEDIUM).

CVE-2022-43840

Name: aspera_console
Author: ibm

4.3MEDIUM

IBM Aspera Console 3.4.0 through 3.4.4 is vulnerable to an XPath injection vulnerability, which could allow an authenticated attacker to exfiltrate sensitive application data and/or determine the str

Опубликовано: 4/14/2025Обновлено: 7/24/2025

Описание

IBM Aspera Console 3.4.0 through 3.4.4 is vulnerable to an XPath injection vulnerability, which could allow an authenticated attacker to exfiltrate sensitive application data and/or determine the structure of the XML document.

ИИ-АнализНа базе ИИ

Затронутые продукты

ibmaspera_console

Ссылки

https://www.ibm.com/support/pages/node/7169766
Vendor Advisory