Описание
Weak access control permissions in MELAG FTP Server 2.2.0.4 allow the "Everyone" group to read the local FTP configuration file, which includes among other information the unencrypted passwords of all FTP users.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:melag:ftp_server:2.2.0.4:*:*:*:*:*:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
7.1 High
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-276
Связанные уязвимости
CVSS3: 7.1
github
больше 3 лет назад
Weak access control permissions in MELAG FTP Server 2.2.0.4 allow the "Everyone" group to read the local FTP configuration file, which includes among other information the unencrypted passwords of all FTP users.
EPSS
Процентиль: 11%
0.00038
Низкий
7.1 High
CVSS3
3.6 Low
CVSS2
Дефекты
CWE-276