CVE-2025-66483
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Apr 01, 2026
Vendor
unknown
Description
IBM Aspera Shares 1.9.9 through 1.11.0 does not invalidate session after a password reset which could allow an authenticated user to impersonate another user on the system.