Fta Security Vulnerabilities and Issues — Fta CVE List

Lucene search

AccellionFta

6 matches found

CVE•added 2021/02/16 9:15 p.m.•1210 views

CVE-2021-27104

Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later.

10CVSS9.4AI score0.03393EPSS

In wild

CVE•added 2021/02/16 9:15 p.m.•1162 views

CVE-2021-27101

Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is FTA_9_12_380 and later.

9.8CVSS9.6AI score0.01452EPSS

In wild

CVE•added 2021/02/16 9:15 p.m.•1133 views

CVE-2021-27102

Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call. The fixed version is FTA_9_12_416 and later.

7.8CVSS8.7AI score0.00314EPSS

In wild

CVE•added 2021/02/16 9:15 p.m.•1106 views

CVE-2021-27103

Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to wmProgressstat.html. The fixed version is FTA_9_12_416 and later.

9.8CVSS9.3AI score0.05462EPSS

In wild

CVE•added 2021/03/02 2:15 a.m.•73 views

CVE-2021-27730

Accellion FTA 9_12_432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA_9_12_444 and later.

9.8CVSS9.4AI score0.00418EPSS

CVE•added 2021/03/02 1:15 a.m.•67 views

CVE-2021-27731

Accellion FTA 9_12_432 and earlier is affected by stored XSS via a crafted POST request to a user endpoint. The fixed version is FTA_9_12_444 and later.

6.1CVSS6.4AI score0.00328EPSS