An issue was discovered in South River Technologies TitanFTP NextGen server that allows for a vertical privilege escalation leading to remote code execution.
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HSouthrivertech Titan Ftp Server Nextgen
APPSouthrivertech< 2.1.0.2174
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCELPE
Related vulnerabilities
CVE-2022-34005CRITICAL9.8ten sam produkt
An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. There is Remote Code Execution du...
CVE-2023-27745HIGH8.8ten sam produkt
An issue in South River Technologies TitanFTP Before v2.0.1.2102 allows attackers with low-level privileges to...
CVE-2022-34006HIGH7.8ten sam produkt
An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. When installing, Microsoft SQL Ex...
CVE-2023-45685CRITICAL9.1ten sam vendor
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SF...
CVE-2023-45686HIGH7.2ten sam vendor
Insufficient path validation when writing a file via WebDAV in South River Technologies' Titan MFT and Titan S...