CVE-2023-45687

CVE-2023-45687: Authentication bypass via session fixation in Titan MFT and Titan SFTP servers

Vendor South River Technologies
Product Titan MFT
Weakness CWE-384 · Session fixation
Published October 16, 2023
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on Linux and Windows allows an attacker to bypass the server's authentication if they can trick an administrator into authorizating a session id of their choosing

Key dates

02Disclosure timeline

October 16, 2023 CVE published
September 16, 2024 Record updated