High severity7.1NVD Advisory· Published Jun 24, 2022· Updated Jun 17, 2026
CVE-2021-41637
CVE-2021-41637
Description
Weak access control permissions in MELAG FTP Server 2.2.0.4 allow the "Everyone" group to read the local FTP configuration file, which includes among other information the unencrypted passwords of all FTP users.
Affected products
2- MELAG/FTP Serverdescription
- Range: <=2.2.0.4
Patches
Vulnerability mechanics
References
1- www.securesystems.de/blog/advisory-and-exploitation-the-melag-ftp-server/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.