CVE Published: 16/10/2023 |
CVE Updated: 16/09/2024 |
CVE Year: 2023 Source: rapid7 |
Vendor: South River Technologies |
Product: Titan MFT Status : PUBLISHED
CVE-2023-45685 Description
Insufficient path validation when extracting a zip archive in South River Technologies\' Titan MFT and Titan SFTP servers on Windows and Linux allows an authenticated attacker to write a file to any location on the filesystem via path traversal