Solarwinds Ftp Voyager vulnerabilities
2 known vulnerabilities affecting solarwinds/ftp_voyager.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2017-6803P3HIGHCVSS 8.8PoCv16.2.02017-03-20
CVE-2017-6803 [HIGH] CWE-352 CVE-2017-6803: Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface in the Scheduler in
Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface in the Scheduler in SolarWinds (formerly Serv-U) FTP Voyager 16.2.0 allow remote attackers to hijack the authentication of users for requests that (1) change the admin password, (2) terminate the scheduler, or (3) possibly execute arbitrary commands via crafted requests to Ad
nvd
CVE-2018-25252P4MEDIUMCVSS 5.5≤ 16.2.02026-04-04
CVE-2018-25252 [MEDIUM] CWE-787 CVE-2018-25252: FTP Voyager 16.2.0 contains a denial of service vulnerability that allows local attackers to crash t
FTP Voyager 16.2.0 contains a denial of service vulnerability that allows local attackers to crash the application by injecting oversized buffer data into the site profile IP field. Attackers can create a malicious site profile containing 500 bytes of repeated characters and paste it into the IP field to trigger a buffer overflow that crashes the FT
nvd