Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
secure file transfer vulnerabilities and exploits
(subscribe to this query)
923
VMScore
CVE-2020-0688
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory, aka 'Microsoft Exchange Memory Corruption Vulnerability'.
Microsoft Exchange Server 2013
Microsoft Exchange Server 2016
Microsoft Exchange Server 2019
Microsoft Exchange Server 2010
2 EDB exploits
42 Github repositories
7 Articles
891
VMScore
CVE-2021-35211
Microsoft discovered a remote code execution (RCE) vulnerability in the SolarWinds Serv-U product utilizing a Remote Memory Escape Vulnerability. If exploited, a threat actor may be able to gain privileged access to the machine hosting Serv-U Only. SolarWinds Serv-U Managed File ...
Solarwinds Serv-u
Solarwinds Serv-u 15.2.3
2 Github repositories
3 Articles
801
VMScore
CVE-2009-4644
Accellion Secure File Transfer Appliance prior to 8_0_105 allows remote authenticated administrators to bypass the restricted shell and execute arbitrary commands via shell metacharacters to the ping command, as demonstrated by modifying the cli program.
Accellion Secure File Transfer Appliance 7 0 296
Accellion Secure File Transfer Appliance 7 0 178
Accellion Secure File Transfer Appliance 7 0 135
Accellion Secure File Transfer Appliance 7 0 259
Accellion Secure File Transfer Appliance 7 0 189
801
VMScore
CVE-2009-4646
Static code injection vulnerability in the administrative web interface in Accellion Secure File Transfer Appliance allows remote authenticated administrators to inject arbitrary shell commands by appending them to a request to update the SNMP public community string.
Accellion Secure File Transfer Appliance
785
VMScore
CVE-2009-4645
Directory traversal vulnerability in web_client_user_guide.html in Accellion Secure File Transfer Appliance prior to 8_0_105 allows remote malicious users to read arbitrary files via a .. (dot dot) in the lang parameter.
Accellion Secure File Transfer Appliance 7 0 296
Accellion Secure File Transfer Appliance 7 0 178
Accellion Secure File Transfer Appliance 7 0 135
Accellion Secure File Transfer Appliance 7 0 259
Accellion Secure File Transfer Appliance 7 0 189
1 EDB exploit
785
VMScore
CVE-2008-7012
courier/1000@/api_error_email.html (aka "error reporting page") in Accellion File Transfer Appliance FTA_7_0_178, and possibly other versions before FTA_7_0_189, allows remote malicious users to send spam e-mail via modified description and client_email parameters.
Accellion Secure File Transfer Appliance
Accellion Secure File Transfer Appliance 7 0 135
1 EDB exploit
756
VMScore
CVE-2021-34718
A vulnerability in the SSH Server process of Cisco IOS XR Software could allow an authenticated, remote malicious user to overwrite and read arbitrary files on the local device. This vulnerability is due to insufficient input validation of arguments that are supplied by the user ...
Cisco Ios Xr
725
VMScore
CVE-2009-4648
Accellion Secure File Transfer Appliance prior to 8_0_105 does not properly restrict access to sensitive commands and arguments that run with extra sudo privileges, which allows local administrators to gain privileges via (1) arbitrary arguments in the --file_move action in /usr/...
Accellion Secure File Transfer Appliance 7 0 296
Accellion Secure File Transfer Appliance 7 0 178
Accellion Secure File Transfer Appliance 7 0 135
Accellion Secure File Transfer Appliance 7 0 259
Accellion Secure File Transfer Appliance 7 0 189
1 EDB exploit
668
VMScore
CVE-2020-8796
Biscom Secure File Transfer (SFT) prior to 5.1.1071 and 6.0.1xxx prior to 6.0.1005 allows Remote Code Execution on the server.
Biscom Secure File Transfer
668
VMScore
CVE-2003-0962
Heap-based buffer overflow in rsync prior to 2.5.7, when running in server mode, allows remote malicious users to execute arbitrary code and possibly escape the chroot jail.
Redhat Rsync 2.4.6-2
Andrew Tridgell Rsync 2.5.1
Engardelinux Secure Community 1.0.1
Redhat Rsync 2.5.5-1
Andrew Tridgell Rsync 2.5.5
Redhat Rsync 2.4.6-5
Engardelinux Secure Linux 1.2
Engardelinux Secure Linux 1.1
Andrew Tridgell Rsync 2.3.1
Andrew Tridgell Rsync 2.5.2
Andrew Tridgell Rsync 2.4.0
Redhat Rsync 2.5.4-2
Andrew Tridgell Rsync 2.4.6
Andrew Tridgell Rsync 2.4.8
Redhat Rsync 2.5.5-4
Andrew Tridgell Rsync 2.5.4
Andrew Tridgell Rsync 2.4.5
Engardelinux Secure Community 2.0
Andrew Tridgell Rsync 2.5.3
Andrew Tridgell Rsync 2.3.2
Engardelinux Secure Linux 1.5
Andrew Tridgell Rsync 2.4.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »