CVE-2023-37411

Summary

CVE-2023-37411 is a cross-site scripting (XSS) vulnerability affecting IBM Aspera Faspex versions 5.0.0 to 5.0.6. This issue allows users to inject malicious JavaScript code into the web user interface, effectively altering its intended functionality. The potential consequences of this vulnerability include the disclosure of sensitive credentials within trusted sessions. IBM X-Force has assigned the vulnerability ID 260139.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.