Описание
When installed as Windows service MELAG FTP Server 2.2.0.4 is run as SYSTEM user, which grants remote attackers to abuse misconfigurations or vulnerabilities with administrative access over the entire host system.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:a:melag:ftp_server:2.2.0.4:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01581
Низкий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
When installed as Windows service MELAG FTP Server 2.2.0.4 is run as SYSTEM user, which grants remote attackers to abuse misconfigurations or vulnerabilities with administrative access over the entire host system.
EPSS
Процентиль: 81%
0.01581
Низкий
8.8 High
CVSS3
9 Critical
CVSS2
Дефекты
CWE-276