Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.46 views

Siemens (CVE-2019-12815)

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

10CVSS7.5AI score0.96803EPSS
Exploits23References12
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.26 views

Mageia: Security Advisory (MGASA-2019-0314)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.57606EPSS
Exploits2References3
ICS
ICS
added 2020/02/11 12:0 a.m.71 views

Siemens SIMATIC CP 1543-1

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC CP 1543-1 Vulnerabilities: Improper Access Control, Loop with Unreachable Exit Condition 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow...

9.8CVSS10AI score0.57606EPSS
Exploits2References9
Mageia
Mageia
added 2019/11/07 11:36 p.m.65 views

Updated proftpd packages fix security vulnerabilities

Updated proftpd package fixes security vulnerabilities: It was discovered that the modcopy module of ProFTPD, a FTP/SFTP/FTPS server, performed incomplete permission validation for the CPFR/CPTO commands CVE-2019-12815. It was discovered that due to incorrect handling of overly long commands, a...

9.8CVSS2.1AI score0.57606EPSS
Exploits1References1
ALT Linux
ALT Linux
added 2019/09/09 12:0 a.m.49 views

Security fix for the ALT Linux 8 package proftpd version 1.3.6-alt0.1.ga73dbfe3b

1.3.6-alt0.1.ga73dbfe3b built Sept. 9, 2019 Sergey Y. Afonin in task 237142 July 23, 2019 Konstantin Lepikhov - Updated to 1.3.6-ga73dbfe3b. - Fix modcopy bug 4372 Ensure that modcopy checks for &LTLimits for its SITE CPFR CVE-2019-12815 closes 37056. - Updated modsqlpostgres patch. - Updated -pc...

7.5CVSS9.4AI score0.57606EPSS
Exploits1
OSV
OSV
added 2019/08/14 5:59 a.m.6 views

OPENSUSE-SU-2019:1870-1 Security update for proftpd

This update for proftpd fixes the following issues: Security issues fixed: - CVE-2019-12815: Fixed arbitrary file copy in modcopy that allowed for remote code execution and information disclosure without authentication bnc1142281. This update was imported from the openSUSE:Leap:15.0:Update update...

9.8CVSS8AI score0.57606EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.40 views

Debian DSA-4491-1 : proftpd-dfsg - security update

Tobias Maedel discovered that the modcopy module of ProFTPD, a FTP/SFTP/FTPS server, performed incomplete permission validation for the CPFR/CPTO commands. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian Security Advisory DSA-4491...

9.8CVSS6.7AI score0.57606EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.36 views

openSUSE Security Update : proftpd (openSUSE-2019-1836)

This update for proftpd fixes the following issues : Security issues fixed : - CVE-2019-12815: Fixed arbitrary file copy in modcopy that allowed for remote code execution and information disclosure without authentication bnc1142281. C Tenable Network Security, Inc. The descriptive text and packag...

9.8CVSS7.7AI score0.57606EPSS
Exploits1References3
OSV
OSV
added 2019/08/08 9:5 a.m.9 views

OPENSUSE-SU-2019:1836-1 Security update for proftpd

This update for proftpd fixes the following issues: Security issues fixed: - CVE-2019-12815: Fixed arbitrary file copy in modcopy that allowed for remote code execution and information disclosure without authentication bnc1142281...

9.8CVSS8AI score0.57606EPSS
Exploits1References4
OPENSUSE Linux
OPENSUSE Linux
added 2019/08/08 12:0 a.m.86 views

Security update for proftpd (important)

openSUSE Security Update: Security update for proftpd Announcement ID: openSUSE-SU-2019:1836-1 Rating: important References: 1142281 Cross-References: CVE-2017-7418 CVE-2019-12815 Affected Products: openSUSE Leap 15.1 openSUSE Leap 15.0 openSUSE Backports SLE-15 An update that fixes two...

9.8CVSS7AI score0.57606EPSS
Exploits1References1
The Hacker News
The Hacker News
added 2019/07/23 3:47 p.m.293 views

A New 'Arbitrary File Copy' Flaw Affects ProFTPD Powered FTP Servers

A German security researcher has publicly disclosed details of a serious vulnerability in one of the most popular FTP server applications, which is currently being used by more than one million servers worldwide. The vulnerable software in question is ProFTPD, an open source FTP server used by a...

10CVSS8.9AI score0.96803EPSS
Exploits23
NVD
NVD
added 2019/07/19 11:15 p.m.38 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS9.7AI score0.57606EPSS
Exploits1References15
UbuntuCve
UbuntuCve
added 2019/07/19 11:15 p.m.57 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS7.2AI score0.57606EPSS
Exploits1References3
CVE
CVE
added 2019/07/19 10:56 p.m.1921 views

CVE-2019-12815

Summary: CVE-2019-12815 is a vulnerability in ProFTPD’s mod_copy that allowed unauthenticated remote access to copy arbitrary files due to incomplete CPFR/CPTO permission checks, enabling remote code execution and information disclosure. Affected software: ProFTPD up to 1.3.5b (and related 1.3.5 ...

9.8CVSS9.5AI score0.57606EPSS
Exploits1References15Affected Software1
Debian CVE
Debian CVE
added 2019/07/19 10:56 p.m.76 views

CVE-2019-12815

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306...

9.8CVSS6.7AI score0.57606EPSS
Exploits1
Rows per page
Query Builder