HIGH🇵🇱 Wersja polska

CVE-2023-27745

CVSS 8.8v3.1pub. 2023-06-02upd. 2025-01-09

An issue in South River Technologies TitanFTP Before v2.0.1.2102 allows attackers with low-level privileges to perform Administrative actions by sending requests to the user server.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Southrivertech Titan Ftp Server Nextgen

    APP
    Southrivertech
    < 2.0.1.2102
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-34005CRITICAL9.8ten sam produkt

An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. There is Remote Code Execution du...

CVE-2023-27744HIGH7.8ten sam produkt

An issue was discovered in South River Technologies TitanFTP NextGen server that allows for a vertical privile...

CVE-2022-34006HIGH7.8ten sam produkt

An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. When installing, Microsoft SQL Ex...

CVE-2023-45685CRITICAL9.1ten sam vendor

Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SF...

CVE-2023-45686HIGH7.2ten sam vendor

Insufficient path validation when writing a file via WebDAV in South River Technologies' Titan MFT and Titan S...