Unrated severityNVD Advisory· Published Jun 11, 2019· Updated Aug 4, 2024
CVE-2019-12146
CVE-2019-12146
Description
A Directory Traversal issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. Attackers have the ability to abuse a flaw in the SCP listener by crafting strings using specific patterns to write files and create directories outside of their authorized directory.
Affected products
2- Progress ipswitch/WS_FTP Serverdescription
- Range: <8.6.1
Patches
Vulnerability mechanics
References
1- docs.ipswitch.com/WS_FTP_Server2018/ReleaseNotes/index.htmmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.