CVE-2025-36230 | IBM Aspera Faspex up to 5.0.14.1 cross site scripting

December 26, 2025 Yanac

A vulnerability, which was classified as problematic, was found in IBM Aspera Faspex up to 5.0.14.1. This issue affects some unknown processing. Executing manipulation can lead to basic cross site scripting.

This vulnerability is tracked as CVE-2025-36230. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More

CVE-2025-36228 | IBM Aspera Faspex up to 5.0.14.1 Backend API incorrect execution-assigned permissions
CVE-2025-14687 | IBM DB2 Intelligence Center 1.1.0/1.1.1/1.1.2 client-side enforcement of server-side security