CVE-2024-38315 | IBM Aspera Shares up to 1.10.0 PL3 Password Reset session expiration (XFDB-294742)

Inserito da Angelo Barbosa | Set 16, 2024 | CVE

A vulnerability, which was classified as critical, was found in IBM Aspera Shares up to 1.10.0 PL3. Affected is an unknown function of the component Password Reset Handler. The manipulation leads to session expiration.

This vulnerability is traded as CVE-2024-38315. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-38315 | IBM Aspera Shares up to 1.10.0 PL3 Password Reset session expiration (XFDB-294742)

Post correlati

CVE-2023-7030 | Collapse-O-Matic Plugin up to 1.8.5.5 on WordPress Shortcode cross site scripting

CVE-2024-2812 | Tenda AC15 15.03.05.18/15.03.20_multi /goform/WriteFacMac formWriteFacMac mac os command injection

CVE-2024-2563 | PandaXGO PandaX up to 20240310 upload.go DeleteImage fileName path traversal

CVE-2024-0380 | WP Recipe Maker Plugin up to 9.1.0 on WordPress path traversal