Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated attacker to get the size of an arbitrary file on the filesystem using path traversal in the ftp "SIZE" command
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NSouthrivertech Titan Mft Server
APPSouthrivertech< 2.0.18Southrivertech Titan Sftp Server
APPSouthrivertech< 2.0.18
Related vulnerabilities
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SF...
A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on Linux and Wi...
Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Windows an...
Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user ...
An issue was discovered in TitanFTP (aka Titan FTP) NextGen before 1.2.1050. There is Remote Code Execution du...