CVE-2023-45690

Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem

Published: Oct 16, 2023
Updated: Oct 25, 2023
CVE: CVE-2023-45690
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.9
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CWEs:

CWE-276

Affected Software
References

Software	From	Fixed in
southrivertech / titan_ftp_server	-	2.0.16.2277.x
southrivertech / titan_mft_server	-	2.0.18

https://helpdesk.southrivertech.com/portal/en/kb/articles/security-patch-for-issues-cve-2023-45685-through-cve-2023-45690
https://www.rapid7.com/blog/post/2023/10/16/multiple-vulnerabilities-in-south-river-technologies-titan-mft-and-titan-sftp-fixed/

Vulnerability Database

290,273

CVE-2023-45690