1 year ago

You can’t say https://www.ibm.com/us-en didn’t warn us. On Jan. 26, 2023, https://www.ibm.com/support/pages/node/6952319 in its ultrafast https://www.ibm.com/products/aspera. In particular, https://nvd.nist.gov/vuln/detail/CVE-2022-47986, with a https://thenewstack.io/cvss-struggles-to-remain-viable-in-the-era-of-cloud-native-computing/ critical rating of 9.8, is as bad a security hole as you can get. Making matters worse, the bug’s discoverers, security company https://assetnote.io/ published a https://blog.assetnote.io/2023/02/02/pre-auth-rce-aspera-faspex/ a week later.

So you need to immediately update your software to the latest patch level to safeguard your systems.