Unrated severityNVD Advisory· Published Dec 5, 2018· Updated Aug 5, 2024
CVE-2018-16792
CVE-2018-16792
Description
SolarWinds SFTP/SCP server through 2018-09-10 is vulnerable to XXE via a world readable and writable configuration file that allows an attacker to exfiltrate data.
Affected products
1- Range: <= 2018-09-10
Patches
Vulnerability mechanics
References
1- seclists.org/fulldisclosure/2018/Dec/0mitremailing-listx_refsource_FULLDISC
News mentions
0No linked articles in our index yet.