Skip to main content

Lftp

1 CVEs product

Monthly

CVE-2018-10916 MEDIUM POC PATCH This Month

It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Lftp Ubuntu Linux Leap
NVD GitHub
CVSS 3.0
6.5
EPSS
4.8%
EPSS 5% CVSS 6.5
MEDIUM POC PATCH This Month

It has been discovered that lftp up to and including version 4.8.3 does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

Information Disclosure Lftp Ubuntu Linux +1
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy