CVE-2023-38018 | IBM Aspera Shares 1.10.0 PL2 Password Change session fixiation (XFDB-260574)

Posted by Angelo Barbosa | Aug 9, 2024 | CVE

A vulnerability, which was classified as critical, was found in IBM Aspera Shares 1.10.0 PL2. This affects an unknown part of the component Password Change Handler. The manipulation leads to session fixiation.

This vulnerability is uniquely identified as CVE-2023-38018. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38018 | IBM Aspera Shares 1.10.0 PL2 Password Change session fixiation (XFDB-260574)

Related Posts

CVE-2024-30454 | VeronaLabs WP SMS Plugin up to 6.6.2 on WordPress cross-site request forgery

CVE-2023-6276 | Tongda OA 2017 up to 11.9 delete.php PROJ_ID_STR sql injection

CVE-2024-4235 | Netgear DG834Gv5 1.6.01.34 Web Management Interface cleartext storage

CVE-2023-6464 | SourceCodester User Registration and Login System 1.0 /endpoint/add-user.php user sql injection