CVE-2023-45690

Summary

Default file permissions on South River Technologies' Titan MFT and Titan SFTP servers on Linux allows a user that's authentication to the OS to read sensitive files on the filesystem

Affected Software

VendorProductVersion RangeStatus
South River TechnologiesTitan MFT0 <= 2.0.17.2298affected
South River TechnologiesTitan SFTP0 <= 2.0.17.2298affected

Weaknesses

  • CWE-276: CWE-276 Incorrect Default Permissions

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References