exploitDog

CVE-2022-27468

Опубликовано: 26 апр. 2022

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafted file uploaded to the web server.

Ссылки

https://www.monstaftp.com/
Product
https://www.youtube.com/playlist?list=PLGCNgyyYX0yG9rF3Pd72H7qE9sfRA7d_i
Broken Link
Exploit
Third Party Advisory
https://www.monstaftp.com/
Product
https://www.youtube.com/playlist?list=PLGCNgyyYX0yG9rF3Pd72H7qE9sfRA7d_i
Broken Link
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:monstaftp:monsta_ftp:2.10.3:*:*:*:*:*:*:*

EPSS

Процентиль: 77%

0.01003

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434

Связанные уязвимости

GHSA-xhjm-9p9r-cp2g

CVSS3: 9.8

github

почти 4 года назад

Monstaftp v2.10.3 was discovered to contain an arbitrary file upload which allows attackers to execute arbitrary code via a crafted file uploaded to the web server.

EPSS

Процентиль: 77%

0.01003

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-434