CVE-2026-8179

Summary

IBM Aspera High-Speed Transfer Endpoint 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Server 3.7.4 through 4.4.7 Fix Pack 1 and IBM Aspera High-Speed Transfer Endpoint are affected by a buffer overflow in the asperahttpd component. This vulnerability could allow an authenticated user to execute arbitrary code on the system.

Affected Software

VendorProductVersion RangeStatus
IBMAspera High-Speed Transfer Endpoint3.7.4 <= 4.4.7 Fix Pack 1affected
IBMAspera High-Speed Transfer Server3.7.4 <= 4.4.7 Fix Pack 1affected

Weaknesses

  • CWE-121: CWE-121 Stack-based Buffer Overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References