Unrated severityNVD Advisory· Published Jun 11, 2019· Updated Aug 4, 2024
CVE-2019-12144
CVE-2019-12144
Description
An issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. Attackers have the ability to abuse a path traversal vulnerability using the SCP protocol. Attackers who leverage this flaw could also obtain remote code execution by crafting a payload that abuses the SITE command feature.
Affected products
2- Progress ipswitch/WS_FTP Serverdescription
- Range: <8.6.1
Patches
Vulnerability mechanics
References
1- docs.ipswitch.com/WS_FTP_Server2018/ReleaseNotes/index.htmmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.