Security Advisory

CVE-2025-66483

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-01 22:56:38

Last updated 2026-04-02 13:33:16

Assigner ibm

State PUBLISHED

Description

IBM Aspera Shares 1.9.9 through 1.11.0 does not invalidate session after a password reset which could allow an authenticated user to impersonate another user on the system.

← Browse all CVEs View on cve.org ↗