CVE-2025-13459
Awaiting Analysis Awaiting Analysis - Queue

Denial of Service in IBM Aspera Console via Workflow Flaw

Vulnerability report for CVE-2025-13459, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-03-16

Last updated on: 2026-03-17

Assigner: IBM Corporation

Description

IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-03-16
Last Modified
2026-03-17
Generated
2026-07-07
AI Q&A
2026-03-16
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
ibm aspera_console From 3.3.0 (inc) to 3.4.9 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-841 The product supports a session in which more than one behavior must be performed by an actor, but it does not properly ensure that the actor performs the behaviors in the required sequence.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability affects IBM Aspera Console versions 3.3.0 through 3.4.8. It allows a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.

Impact Analysis

The vulnerability can lead to a denial of service condition, which means that the affected system or service could become unavailable or unresponsive when exploited by a privileged user.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-13459. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart