CVE-2025-13212 - Vulnerability Details - OpenCVE

IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Aspera Console

No data.

No data.

No data.

References

Link	Providers
https://www.ibm.com/support/pages/node/7263486

History

Fri, 13 Mar 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency.
Title		IBM Aspera Console Denial of Service
First Time appeared		Ibm Ibm aspera Console
Weaknesses		CWE-799
CPEs		cpe:2.3:a:ibm:aspera_console:3.3.0:::::::* cpe:2.3:a:ibm:aspera_console:3.4.8:::::::*
Vendors & Products		Ibm Ibm aspera Console
References		https://www.ibm.com/support/pages/node/7263486
Metrics		cvssV3_1 `{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}`

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2026-03-13T19:54:10.521Z

Updated: 2026-03-13T19:54:10.521Z

Reserved: 2025-11-14T19:05:22.749Z

Link: CVE-2025-13212

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-13212", "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "state": "PUBLISHED", "assignerShortName": "ibm", "dateReserved": "2025-11-14T19:05:22.749Z", "datePublished": "2026-03-13T19:54:10.521Z", "dateUpdated": "2026-03-13T19:54:10.521Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm", "dateUpdated": "2026-03-13T19:54:10.521Z"}, "title": "IBM Aspera Console Denial of Service", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-799", "description": "CWE-799 Improper Control of Interaction Frequency", "type": "CWE"}]}], "affected": [{"vendor": "IBM", "product": "Aspera Console", "versions": [{"status": "affected", "version": "3.3.0", "lessThanOrEqual": "3.4.8", "versionType": "semver"}], "cpes": ["cpe:2.3:a:ibm:aspera_console:3.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:aspera_console:3.4.8:*:*:*:*:*:*:*"]}], "descriptions": [{"lang": "en", "value": "IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>IBM Aspera Console 3.3.0 through 3.4.8 could allow an authenticated user to cause a denial of service in the email service due to improper control of interaction frequency.</p>"}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7263486", "tags": ["vendor-advisory", "patch"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW", "baseSeverity": "MEDIUM", "baseScore": 5.3, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}}], "solutions": [{"lang": "en", "value": "Remediation/Fixes It is strongly recommended that customers upgrade to the latest version of IBM Aspera Console: Product(s) Fixing VRM Platform Link to Fix IBM Aspera Console 3.4.9 Windows Link IBM Aspera Console 3.4.9 Linux Link", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Remediation/Fixes It is strongly recommended that customers upgrade to the latest version of IBM Aspera Console: Product(s) Fixing VRM Platform Link to Fix IBM Aspera Console 3.4.9 Windows Link IBM Aspera Console 3.4.9 Linux Link</p>"}]}], "x_generator": {"engine": "ibm-cvegen"}}}}