Security Advisory

CVE-2019-12146

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-06-11 20:58:26

Last updated 2024-08-04 23:10:30

Assigner mitre

State PUBLISHED

Description

A Directory Traversal issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. Attackers have the ability to abuse a flaw in the SCP listener by crafting strings using specific patterns to write files and create directories outside of their authorized directory.

← Browse all CVEs View on cve.org ↗