Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

southrivertech titan mft server vulnerabilities and exploits

(subscribe to this query)
9.1
CVSSv3
CVE-2023-45685
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated malicious user to write a file to any location on the filesystem via path traversal
Southrivertech Titan Mft ServerSouthrivertech Titan Sftp Server
8.8
CVSSv3
CVE-2023-45687
A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on Linux and Windows allows an malicious user to bypass the server's authentication if they can trick an administrator into authorizating a session id of their choosing
Southrivertech Titan Mft ServerSouthrivertech Titan Sftp Server
4.3
CVSSv3
CVE-2023-45688
Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated malicious user to get the size of an arbitrary file on the filesystem using path traversal in the ftp "SIZE" command
Southrivertech Titan Mft ServerSouthrivertech Titan Sftp Server
6.5
CVSSv3
CVE-2023-45689
Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker with administrative privileges to read any file on the filesystem via path traversal
Southrivertech Titan Mft ServerSouthrivertech Titan Sftp Server
4.9
CVSSv3
CVE-2023-45690
Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem
Southrivertech Titan Ftp ServerSouthrivertech Titan Mft Server
7.2
CVSSv3
CVE-2023-45686
Insufficient path validation when writing a file via WebDAV in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated malicious user to write a file to any location on the filesystem via path traversal
Southrivertech Titan Mfp Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651CVE-2024-34255elevation of privilegeCVE-2024-25529CVE-2024-4671NULL pointer dereferenceCVE-2024-25527template injectionCVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook