all InfoSec news
CVE-2023-40044, CVE-2023-42657: Two Critical Vulnerabilities Impacting Progress WS_FTP Server
Malware Analysis, News and Indicators - Latest topics malware.news
On September 27, 2023, Progress Software released a security advisory detailing multiple vulnerabilities in their WS_FTP Server product, including two with a critical severity rating. CVE-2023-40044 (CVSS 10) is a deserialization vulnerability that affects the Ad Hoc Transfer module and could allow a threat actor to obtain remote code execution if successfully exploited. CVE-2023-42657 (CVSS … CVE-2023-40044, CVE-2023-42657: Two Critical Vulnerabilities Impacting Progress WS_FTP Server
Article Link: CVE-2023-40044, CVE-2023-42657 | Arctic Wolf
1 post - 1 participant
actor advisory code code execution critical critical vulnerabilities cve cve-2023-40044 cvss deserialization product progress progress software rating remote code remote code execution security security advisory september server severity software threat threat actor transfer vulnerabilities vulnerability ws_ftp