CVE-2023-45685

Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 16/10/2023 Updated: 24/10/2023

CVSS v3 Base Score: 9.1 | Impact Score: 6 | Exploitability Score: 2.3

VMScore: 0

Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated malicious user to write a file to any location on the filesystem via path traversal

Vulnerable Product	Search on Vulmon	Subscribe to Product
southrivertech titan mft server
southrivertech titan sftp server

CWE-22 https://helpdesk.southrivertech.com/portal/en/kb/articles/security-patch-for-issues-cve-2023-45685-through-cve-2023-45690 https://www.rapid7.com/blog/post/2023/10/16/multiple-vulnerabilities-in-south-river-technologies-titan-mft-and-titan-sftp-fixed/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2023-45685

Vulnerability Summary

References

Vulmon Search

About

Products

Connect