CVE-2023-27873

Summary

IBM Aspera Faspex 4.4.2 could allow a remote authenticated attacker to obtain sensitive credential information using specially crafted XML input. IBM X-Force ID: 249654.

Affected Software

VendorProductVersion RangeStatus
IBMAspera Faspex4.4.2affected

Weaknesses

  • 200

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References