CVE-2019-12144 – An issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before …

Vuln ID: CVE-2019-12144

Published:  2019-06-11  21:29:01Z

Description: An issue was discovered in SSHServerAPI.dll in Progress ipswitch WS_FTP Server 2018 before 8.6.1. Attackers have the ability to abuse a path traversal vulnerability using the SCP protocol. Attackers who leverage this flaw could also obtain remote code execution by crafting a payload that abuses the SITE command feature.

Source: NVD.NIST.GOV

 

Tags