cbcvebase.
CVE-2011-1409
published 2011-06-24

CVE-2011-1409: Frams's Fast File EXchange (F*EX, aka fex) 20100208, and possibly other versions before 20110610, allows remote attackers to bypass authentication and upload…

PriorityP337medium5CVSS 2.0
AVNACLAuNCNIPAN
EPSS
2.29%
81.0th percentile
Frams's Fast File EXchange (F*EX, aka fex) 20100208, and possibly other versions before 20110610, allows remote attackers to bypass authentication and upload arbitrary files via a request that lacks an authentication ID.

Affected

6 ranges
VendorProductVersion rangeFixed in
debianfex< fex 20110610-1 (bookworm)fex 20110610-1 (bookworm)
ulli_horlacherfex
ulli_horlacherfex>= 0 < 20110610-120110610-1
ulli_horlacherfex>= 0 < 20110610-120110610-1
ulli_horlacherfex>= 0 < 20110610-120110610-1
ulli_horlacherfex>= 0 < 20110610-120110610-1

CVSS provenance

nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:P/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.