Shambala Server 4.5 allows remote attackers to cause a denial of service by opening then closing a connection.
7AI Score
0.032EPSS
Shambala Server 4.5 stores passwords in plaintext, which could allow local users to obtain the passwords and compromise the server.
6.6AI Score
0.005EPSS
Directory traversal vulnerability in Shambala 4.5 allows remote attackers to escape the FTP root directory via "CWD ..." command.
7.1AI Score
0.009EPSS
Web server for Shambala 4.5 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request.
6.6AI Score
0.032EPSS
Directory traversal vulnerability in the FTP server for Shambala 4.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the (1) LIST (ls) or (2) GET commands.
7.1AI Score
0.006EPSS