Known Vulnerabilities for Aspera Shares by IBM
Listed below are 1 of the newest known vulnerabilities associated with "Aspera Shares" by "IBM".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-66487 | IBM Aspera Shares 1.9.9 through 1.11.0 does not properly rate limit the frequency that an authenticated user can send emails,... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2025-66486 | IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, w... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2025-66485 | IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to HTTP header injection, caused by improper validation of input by the ... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2025-66484 | IBM Aspera Shares 1.9.9 through 1.11.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2025-66483 | IBM Aspera Shares 1.9.9 through 1.11.0 does not invalidate session after a password reset which could allow an authenticated ... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2025-13916 | IBM Aspera Shares 1.9.9 through 1.11.0 uses weaker than expected cryptographic algorithms that could allow an attacker to dec... | Not Provided | 2026-04-01 | 2026-04-01 |
| CVE-2020-4731 | IBM Aspera Web Application 1.9.14 PL1 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitra... | 6.1 - MEDIUM | 2020-09-21 | 2020-10-29 |