CVE-2018-16791
The CVE concerns SolarWinds SFTP/SCP Server (through 2018-09-10). The configuration file is world-readable and writable, and passwords are stored insecurely, enabling an attacker to determine passwords for privileged accounts and potentially backdoor the server. The connected references (NVD/CNVD...