Known Vulnerabilities for Aspera Shares by IBM
Listed below are 6 of the newest known vulnerabilities associated with "Aspera Shares" by "IBM".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-66487 json | IBM Aspera Shares 1.9.9 through 1.11.0 does not properly rate limit the frequency that an authenticated user can send emails,... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2025-66486 json | IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, w... | Not Provided | 2026-04-01 | 2026-04-03 |
| CVE-2025-66485 json | IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to HTTP header injection, caused by improper validation of input by the ... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2025-66484 json | IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2025-66483 json | IBM Aspera Shares 1.9.9 through 1.11.0 does not invalidate session after a password reset which could allow an authenticated ... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2025-13916 json | IBM Aspera Shares 1.9.9 through 1.11.0 uses weaker than expected cryptographic algorithms that could allow an attacker to dec... | Not Provided | 2026-04-01 | 2026-04-02 |
| CVE-2020-4731 json | IBM Aspera Web Application 1.9.14 PL1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitra... | 6.1 - MEDIUM | 2020-09-21 | 2020-10-29 |