PT-2020-12795 · Zftpserver · Provide

Published

2020-04-12

Updated

2020-04-13

CVE-2020-11708

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ProVide (formerly zFTPServer) versions through 13.1

Description An issue in the software allows for privilege escalation via the "/ajax/SetUserInfo" API endpoint, specifically through the messages parameter. This is due to the EXECUTE() feature, which is designed to execute programs when certain events are triggered.

Recommendations For versions through 13.1, consider disabling the EXECUTE() feature or restricting access to the "/ajax/SetUserInfo" API endpoint to minimize the risk of exploitation. Additionally, avoid using the messages parameter in the affected API endpoint until the issue is resolved.

Exploit

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2020-11708

Affected Products

Provide

PT-2020-12795 · Zftpserver · Provide

CVE-2020-11708

Weakness Enumeration

Related Identifiers

Affected Products

References · 6