CVE-2025-13212
Awaiting Analysis
Awaiting Analysis - Queue
Denial of Service in IBM Aspera Console Email Service
Publication date: 2026-03-16
Last updated on: 2026-03-17
Assigner: IBM Corporation
Description
Description
IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| ibm | aspera_console | From 3.3.0 (inc) to 3.4.9 (exc) |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-799 | The product does not properly limit the number or frequency of interactions that it has with an actor, such as the number of incoming requests. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability affects IBM Aspera Console versions 3.3.0 through 3.4.8. It allows an authenticated user to cause a denial of service (DoS) in the email service by improperly controlling the frequency of interactions.
How can this vulnerability impact me? :
The impact of this vulnerability is a denial of service condition in the email service of IBM Aspera Console. This means that an attacker who is authenticated could disrupt the normal operation of the email service, potentially causing service unavailability.
How does this vulnerability affect compliance with common standards and regulations (like GDPR, HIPAA)?:
I don't know
How can this vulnerability be detected on my network or system? Can you suggest some commands?
I don't know
What immediate steps should I take to mitigate this vulnerability?
I don't know
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70