virus logo FortiClient Vulnerability

Security Vulnerabilities fixed in IBM Aspera Faspex 4.4.2

description-logoDescription

This Security Bulletin addresses security vulnerabilities that have been remediated in IBM Aspera Faspex 4.4.2 PL2.

description-logoOutbreak Alert

IBM Aspera Faspex could allow a remote attacker to execute code on the system, caused by a YAML deserialization flaw. By sending a specially crafted obsolete API call, an attacker could exploit this vulnerability to execute arbitrary code on the system.

View the full Outbreak Alert Report

affected-products-logoAffected Applications

IBM Aspera Faspex

Version Updates

Date Version Detail
2023-02-17 1.402 IBM Aspera Faspex

CVE References

CVE-2022-28330 CVE-2023-22868 CVE-2022-30556 CVE-2022-31813 CVE-2022-30522 CVE-2022-47986 CVE-2022-28615 CVE-2022-26377 CVE-2018-25032 CVE-2022-2068

Other References

https://www.ibm.com/support/pages/node/6952319
ID 4795
Created Feb 18, 2023
Description
Updated		 Nov 03, 2023
Outbreak Alert IBM Aspera Faspex Code Execution
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Coverage FortiClient
OS Windows
Vendor IBM
Patch manual
Application IBM Aspera Faspex