CVE-2023-42657

CVSS V2 None CVSS V3 None
Description
In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a directory traversal vulnerability was discovered.  An attacker could leverage this vulnerability to perform file operations (delete, rename, rmdir, mkdir) on files and folders outside of their authorized WS_FTP folder path.  Attackers could also escape the context of the WS_FTP Server file structure and perform the same level of operations (delete, rename, rmdir, mkdir) on file and folder locations on the underlying operating system.
Overview
  • CVE ID
  • CVE-2023-42657
  • Assigner
  • ProgressSoftware
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2023-09-27T14:49:03.093Z
  • Last Modified Date
  • 2023-09-27T15:20:51.807Z
History
Created Old Value New Value Data Type Notes
2024-06-25 14:03:51 Added to TrackCVE