Lucene search

PRIOn knowledge basePRION:CVE-2023-40049

HistorySep 27, 2023 - 3:19 p.m.

Design/Logic Flaw

2023-09-2715:19:00

PRIOn knowledge base

www.prio-n.com

ws_ftp server

unauthenticated user

file enumeration

webservicehost directory

nvd

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.0%

In WS_FTP Server version prior to 8.8.2,

an unauthenticated user could enumerate files under the ‘WebServiceHost’ directory listing.

CPENameOperatorVersion
ws_ftp_serverlt8.8.2

CPE	Name	Operator	Version
	ws_ftp_server	lt	8.8.2

References

community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023

www.progress.com/ws_ftp