CVE-2023-45688

CVE-2023-45688: Information leak via path traversal in Titan MFT and Titan SFTP servers

Vendor South River Technologies
Product Titan MFT
Weakness CWE-22 · Path traversal
Published October 16, 2023
Last update September 16, 2024

CVSS base score

What the vulnerability does

01Description

Lack of sufficient path validation in South River Technologies' Titan MFT and Titan SFTP servers on Linux allows an authenticated attacker to get the size of an arbitrary file on the filesystem using path traversal in the ftp "SIZE" command

Key dates

02Disclosure timeline

October 16, 2023 CVE published
September 16, 2024 Record updated