Lucene search
Redhat.comRH:CVE-2018-10916HistoryJul 31, 2018 - 8:49 p.m.
CVE-2018-10916
2018-07-3120:49:36
redhat.com
access.redhat.com
13
EPSS
0.005
Percentile
75.3%
It has been discovered that lftp does not properly sanitize remote file names, leading to a loss of integrity on the local system when reverse mirroring is used. A remote attacker may trick a user to use reverse mirroring on an attacker-controlled FTP server, resulting in the removal of all files in the current working directory of the victim’s system.
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:0642-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for lftp (EulerOS-SA-2019-2165)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for lftp (EulerOS-SA-2020-1259)
2020-03-13 00:00:00
nessus
nessus
EulerOS Virtualization 3.0.6.0 : lftp (EulerOS-SA-2020-1756)
2020-07-01 00:00:00
Slackware 14.0 / 14.1 / 14.2 / current : lftp (SSA:2018-214-01)
2018-08-03 00:00:00
EulerOS 2.0 SP2 : lftp (EulerOS-SA-2019-2485)
2019-12-04 00:00:00
suse
suse
Security update for lftp (moderate)
2019-04-02 00:00:00
Security update for lftp (moderate)
2019-03-28 00:00:00
osv
osv
CVE-2018-10916
2018-08-01 14:29:00
lftp-4.9.2-1.7 on GA media
2024-06-15 00:00:00
ubuntucve
ubuntucve
CVE-2018-10916
2018-08-01 00:00:00
debiancve
debiancve
CVE-2018-10916
2018-08-01 14:29:00
ubuntu
ubuntu
LFTP vulnerability
2018-08-06 00:00:00
LFTP vulnerability
2018-08-06 00:00:00
veracode
veracode
Unauthorized Removal Of Working Directory
2020-04-01 00:37:35
nvd
nvd
CVE-2018-10916
2018-08-01 14:29:00
amazon
amazon
Medium: lftp
2020-07-14 02:35:00
Medium: lftp
2020-06-23 06:03:00
prion
prion
Design/Logic Flaw
2018-08-01 14:29:00
cvelist
cvelist
CVE-2018-10916
2018-08-01 14:00:00
cve
cve
CVE-2018-10916
2018-08-01 14:29:00
redhat
redhat
(RHSA-2020:1045) Moderate: lftp security update
2020-03-31 09:12:04
centos
centos
lftp security update
2020-04-08 18:18:54
alpinelinux
alpinelinux
CVE-2018-10916
2018-08-01 14:29:00
oraclelinux
oraclelinux
lftp security update
2020-04-06 00:00:00
slackware
slackware
[slackware-security] lftp
2018-08-02 21:39:43