CVE-2018-16792 – SolarWinds SFTP/SCP server through 2018-09-10 is vulnerable to XXE via a world readable an …

0

Vuln ID: CVE-2018-16792

Published:  2018-12-05  22:29:00Z

Description: SolarWinds SFTP/SCP server through 2018-09-10 is vulnerable to XXE via a world readable and writable configuration file that allows an attacker to exfiltrate data.

Source: NVD.NIST.GOV