CVE-2025-13459 - Vulnerability Details - OpenCVE

IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Aspera Console

No data.

No data.

No data.

References

Link	Providers
https://www.ibm.com/support/pages/node/7263486

History

Fri, 13 Mar 2026 20:15:00 +0000

Type	Values Removed	Values Added
Description		IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.
Title		IBM Aspera Console Denial of Service
First Time appeared		Ibm Ibm aspera Console
Weaknesses		CWE-841
CPEs		cpe:2.3:a:ibm:aspera_console:3.3.0:::::::* cpe:2.3:a:ibm:aspera_console:3.4.8:::::::*
Vendors & Products		Ibm Ibm aspera Console
References		https://www.ibm.com/support/pages/node/7263486
Metrics		cvssV3_1 `{'score': 2.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L'}`

MITRE

Status: PUBLISHED

Assigner: ibm

Published: 2026-03-13T19:54:05.962Z

Updated: 2026-03-13T19:54:05.962Z

Reserved: 2025-11-19T20:57:57.020Z

Link: CVE-2025-13459

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-13459", "assignerOrgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "state": "PUBLISHED", "assignerShortName": "ibm", "dateReserved": "2025-11-19T20:57:57.020Z", "datePublished": "2026-03-13T19:54:05.962Z", "dateUpdated": "2026-03-13T19:54:05.962Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "9a959283-ebb5-44b6-b705-dcc2bbced522", "shortName": "ibm", "dateUpdated": "2026-03-13T19:54:05.962Z"}, "title": "IBM Aspera Console Denial of Service", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-841", "description": "CWE-841 Improper Enforcement of Behavioral Workflow", "type": "CWE"}]}], "affected": [{"vendor": "IBM", "product": "Aspera Console", "versions": [{"status": "affected", "version": "3.3.0", "lessThanOrEqual": "3.4.8", "versionType": "semver"}], "cpes": ["cpe:2.3:a:ibm:aspera_console:3.3.0:*:*:*:*:*:*:*", "cpe:2.3:a:ibm:aspera_console:3.4.8:*:*:*:*:*:*:*"]}], "descriptions": [{"lang": "en", "value": "IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>IBM Aspera Console 3.3.0 through 3.4.8 could allow a privileged user to cause a denial of service due to improper enforcement of behavioral workflow.</p>"}]}], "references": [{"url": "https://www.ibm.com/support/pages/node/7263486", "tags": ["vendor-advisory", "patch"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "LOW", "baseSeverity": "LOW", "baseScore": 2.7, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:L"}}], "solutions": [{"lang": "en", "value": "Remediation/Fixes It is strongly recommended that customers upgrade to the latest version of IBM Aspera Console: Product(s) Fixing VRM Platform Link to Fix IBM Aspera Console 3.4.9 Windows Link IBM Aspera Console 3.4.9 Linux Link", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>Remediation/Fixes It is strongly recommended that customers upgrade to the latest version of IBM Aspera Console: Product(s) Fixing VRM Platform Link to Fix IBM Aspera Console 3.4.9 Windows Link IBM Aspera Console 3.4.9 Linux Link</p>"}]}], "x_generator": {"engine": "ibm-cvegen"}}}}