CVSS 3.1 Score 2.5 of 10 (low)


Published Apr 19, 2024
CWE ID 312


CVE-2023-37396 is a vulnerability affecting IBM Aspera Faspex version 5.0.0 through 5.0.7. It allows a local user to obtain sensitive information due to improper encryption of certain data. The vulnerability has a low base severity and score of 2.5 according to the CVSS:3.1 rating system. The impact of this vulnerability is low, with a confidentiality impact level of LOW, and there is no integrity or availability impact. To remediate this vulnerability, users should update their IBM Aspera Faspex software to a version that addresses the issue.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-37396 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options