Security Advisory

CVE-2023-42659

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-07 15:13:40

Last updated 2024-09-04 15:24:41

Assigner ProgressSoftware

State PUBLISHED

Description

In WS_FTP Server versions prior to 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. An authenticated Ad Hoc Transfer user has the ability to craft an API call which allows them to upload a file to a specified location on the underlying operating system hosting the WS_FTP Server application.

← Browse all CVEs View on cve.org ↗