all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2022-47986 (aspera_faspex)

Add to bookmarks
Feb. 17, 2023, 4:15 p.m. |

National Vulnerability Database web.nvd.nist.gov

IBM Aspera Faspex 4.4.2 Patch Level 1 and earlier could allow a remote attacker to execute arbitrary code on the system, caused by a YAML deserialization flaw. By sending a specially crafted obsolete API call, an attacker could exploit this vulnerability to execute arbitrary code on the system. The obsolete API call was removed in Faspex 4.4.2 PL2. IBM X-Force ID: 243512.

api aspera aspera faspex call code cve cve-2022-47986 deserialization exploit faspex flaw ibm ibm x-force patch system vulnerability x-force yaml

Visit resource

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 7 months, 2 weeks ago | web.nvd.nist.gov
attackers cve denial of service issue +1
CVE-2023-40101 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android check collapse cve +7
CVE-2023-21377 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android bypass cve disclosure +8
CVE-2023-21380 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android bluetooth buffer buffer overflow +9
CVE-2023-21382 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
access android check cve +11
CVE-2023-21381 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android arbitrary code code code execution +10
CVE-2023-21385 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android corruption cve disclosure +7
CVE-2023-21387 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android backup bypass cve +11
CVE-2023-21389 (android) 7 months, 2 weeks ago | web.nvd.nist.gov
android bypass check cve +10

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Sales Engineer - Customer Success

@ Arctic Wolf | Eden Prairie
View on infosec-jobs.com

Director, Risk Management Strategy and Operations

@ Amgen | US - California - Thousand Oaks - Field/Remote
View on infosec-jobs.com

Risk Consulting - Protect Tech -Staff-General skill

@ EY | Noida, UP, IN, 201301
View on infosec-jobs.com

Lead Systems Engineer (Tranche 1)

@ The Aerospace Corporation | Chantilly
View on infosec-jobs.com

Lead Systems Engineer (Tranche 3)

@ The Aerospace Corporation | Chantilly
View on infosec-jobs.com