Security Advisory

CVE-2023-40044

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-09-27 14:48:08

Last updated 2025-10-21 23:05:36

Assigner ProgressSoftware

State PUBLISHED

Description

In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system.

← Browse all CVEs View on cve.org ↗