CVE-2024-56470

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Feb 5, 2025

CWE ID 918

Summary

CVE-2024-56470: IBM Aspera Shares versions 1.9.0 through 1.10.0 PL6 contain a server-side request forgery (SSRF) vulnerability. This issue enables authenticated attackers to manipulate the system and send unauthorized network requests, potentially exposing sensitive information or providing a foundation for further attacks, such as network enumeration or traffic redirection.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Ibm Aspera Shares

Affected Vendors

IBM Corporation

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/17nxsM
https://www.cve.org/CVERecord?id=CVE-2024-56470
https://nvd.nist.gov/vuln/detail/CVE-2024-56470

Back to Vulnerability Database