CVE-2023-27279

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Apr 19, 2024

Updated: Apr 29, 2024

CWE ID 799

Summary

CVE-2023-27279 refers to a denial-of-service vulnerability affecting IBM Aspera Faspex versions 5.0.0 through 5.0.7. An attacker can exploit this issue by overloading the API with excessive requests due to the lack of API rate limiting. IBM X-Force has assigned the ID 248533 to this vulnerability. This flaw could potentially result in service disruptions for organizations using the affected version of IBM Aspera Faspex. It is recommended that users upgrade to a patched version to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

IBM Aspera Faspex

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/vegnpA
https://www.cve.org/CVERecord?id=CVE-2023-27279
https://nvd.nist.gov/vuln/detail/CVE-2023-27279

Back to Vulnerability Database