Unrated severityNVD Advisory· Published Oct 16, 2023· Updated Sep 16, 2024
Arbitrary file write via "zip slip" in Titan MFT and Titan SFTP servers
CVE-2023-45685
Description
Insufficient path validation when extracting a zip archive in South River Technologies' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker to write a file to any location on the filesystem via path traversal
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3(expand)+ 1 more
- (no CPE)
- (no CPE)range: 0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.