Vulnerabilities > CVE-2023-38001 - Unspecified vulnerability in IBM Aspera Orchestrator 4.0.1

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
ibm

Summary

IBM Aspera Orchestrator 4.0.1 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website trusts. IBM X-Force ID: 260206.

Vulnerable Configurations

Part Description Count
Application
Ibm
1