Insufficient path validation in Titan MFT/SFTP servers allows authenticated attackers to write files to any location via path traversal
Reporter | Title | Published | Views | Family All 6 |
---|---|---|---|---|
Cvelist | CVE-2023-45685 Arbitrary file write via "zip slip" in Titan MFT and Titan SFTP servers | 16 Oct 202316:08 | – | cvelist |
Vulnrichment | CVE-2023-45685 Arbitrary file write via "zip slip" in Titan MFT and Titan SFTP servers | 16 Oct 202316:08 | – | vulnrichment |
NVD | CVE-2023-45685 | 16 Oct 202317:15 | – | nvd |
Prion | Path traversal | 16 Oct 202317:15 | – | prion |
Rapid7 Blog | Multiple Vulnerabilities in South River Technologies Titan MFT and Titan SFTP [FIXED] | 16 Oct 202315:00 | – | rapid7blog |
The Hacker News | Experts Warn of Severe Flaws Affecting Milesight Routers and Titan SFTP Servers | 17 Oct 202310:16 | – | thn |
[
{
"defaultStatus": "unaffected",
"platforms": [
"Linux",
"Windows"
],
"product": "Titan MFT",
"vendor": "South River Technologies",
"versions": [
{
"lessThanOrEqual": "2.0.17.2298",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
},
{
"defaultStatus": "unaffected",
"platforms": [
"Linux",
"Windows"
],
"product": "Titan SFTP",
"vendor": "South River Technologies",
"versions": [
{
"lessThanOrEqual": "2.0.17.2298",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
]
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo