Lucene search
K

4 matches found

Circl
Circl
added 2023/10/16 8:31 p.m.6 views

CVE-2023-45685

creationtimestamp| type| source ---|---|--- 2023-10-16 20:31:53+00:00| seen| https://t.me/cibsecurity/72320 2023-10-17 15:31:27+00:00| seen| https://t.me/truesecator/4972 2023-10-24 13:45:15+00:00| seen| Telegram/tBDOQ7wGIm4uF9KAwql3-OJYIK58iv8Xyd6S-L2mLaft...

9.1CVSS6.4AI score0.01406EPSS
Exploits1References2
CVE
CVE
added 2023/10/16 4:8 p.m.66 views

CVE-2023-45685

CVE-2023-45685 (and related CVEs 45686–45690) affect South River Technologies Titan MFT and Titan SFTP servers on Windows and Linux. The issues stem from insufficient path validation and path traversal, enabling an authenticated attacker (often with administrative/privileged access) to perform ac...

9.1CVSS8.3AI score0.01406EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2023/10/16 4:8 p.m.16 views

CVE-2023-45685 Arbitrary file write via "zip slip" in Titan MFT and Titan SFTP servers

Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker to write a file to any location on the filesystem via path traversal...

6.7AI score0.01406EPSS
Exploits1References2
Cvelist
Cvelist
added 2023/10/16 4:8 p.m.23 views

CVE-2023-45685 Arbitrary file write via "zip slip" in Titan MFT and Titan SFTP servers

Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker to write a file to any location on the filesystem via path traversal...

9.2AI score0.01406EPSS
Exploits1References2
Rows per page
Query Builder