CVE-2023-42659

In WS_FTP Server versions prior to 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. An authenticated Ad Hoc Transfer user has the ability to craft an API call which allows them to upload a file to a specified location on the underlying operating system hosting the WS_FTP Server application.

CVSS v3 8.8 HIGH

8.8^/10

CVSS v3 : HIGH

Vector :

Exploitability : 2.8 / Impact : 5.9

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://community.progress.com/s/article/WS-FTP-Server-Service-Pack-November-2023	Vendor Advisory
https://www.progress.com/ws_ftp	Product

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:progress:ws_ftp_server::::::::
	cpe:2.3:a:progress:ws_ftp_server::::::::

History

14 Nov 2023, 20:21

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 8.8
First Time		Progress ws Ftp Server Progress
CWE		CWE-434
References	~~() https://community.progress.com/s/article/WS-FTP-Server-Service-Pack-November-2023 -~~	() https://community.progress.com/s/article/WS-FTP-Server-Service-Pack-November-2023 - Vendor Advisory
References	~~() https://www.progress.com/ws_ftp -~~	() https://www.progress.com/ws_ftp - Product
CPE		cpe:2.3:a:progress:ws_ftp_server::::::::

07 Nov 2023, 16:17

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-11-07 16:15

Updated : 2023-12-10 15:26

NVD link : CVE-2023-42659

Mitre link : CVE-2023-42659

CVE.ORG link : CVE-2023-42659

JSON object : View

Products Affected

progress

ws_ftp_server

CWE

CWE-434

Unrestricted Upload of File with Dangerous Type

{"id": "CVE-2023-42659", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}, {"type": "Secondary", "source": "security@progress.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.3, "exploitabilityScore": 3.1}]}, "published": "2023-11-07T16:15:28.923", "references": [{"url": "https://community.progress.com/s/article/WS-FTP-Server-Service-Pack-November-2023", "tags": ["Vendor Advisory"], "source": "security@progress.com"}, {"url": "https://www.progress.com/ws_ftp", "tags": ["Product"], "source": "security@progress.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-434"}]}, {"type": "Secondary", "source": "security@progress.com", "description": [{"lang": "en", "value": "CWE-434"}]}], "descriptions": [{"lang": "en", "value": "\nIn WS_FTP Server versions prior to 8.7.6 and 8.8.4, an unrestricted file upload flaw has been identified. An authenticated Ad Hoc Transfer user has the ability to craft an API call which allows them to upload a file to a specified location on the underlying operating system hosting the WS_FTP Server application.\n"}, {"lang": "es", "value": "WS_FTP Server en las versiones anteriores a 8.7.6 y 8.8.4, se identific\u00f3 una falla en la carga de archivos sin restricciones. Un usuario autenticado de Ad Hoc Transfer tiene la capacidad de crear una llamada API que le permite cargar un archivo en una ubicaci\u00f3n espec\u00edfica en el sistema operativo subyacente que aloja la aplicaci\u00f3n del servidor WS_FTP."}], "lastModified": "2023-11-14T20:21:09.777", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:progress:ws_ftp_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8424B148-39EF-483E-81F3-25A2FFF83CE6", "versionEndExcluding": "8.7.6"}, {"criteria": "cpe:2.3:a:progress:ws_ftp_server:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23DE01DB-BA5C-4064-88B3-99B228E1E7C9", "versionEndExcluding": "8.8.4", "versionStartIncluding": "8.8.0"}], "operator": "OR"}]}], "sourceIdentifier": "security@progress.com"}