QwikSec

Security Database

CVE

CWE

Training

CVE-2020-26299

Published: Feb 10, 2021

Modified: Aug 4, 2024

PUBLISHED

CVSS v3.1

6.3

MEDIUM

Description

ftp-srv is an open-source FTP server designed to be simple yet configurable. In ftp-srv before version 4.4.0 there is a path-traversal vulnerability. Clients of FTP servers utilizing ftp-srv hosted on Windows machines can escape the FTP user's defined root folder using the expected FTP commands, for example, CWD and UPDR. When windows separators exist within the path (`\`), `path.resolve` leaves the upper pointers intact and allows the user to move beyond the root folder defined for that user. We did not take that into account when creating the path resolve function. The issue is patched in version 4.4.0 (commit 457b859450a37cba10ff3c431eb4aa67771122e3).

Vendor	Product	Versions
autovance	ftp-srv	affected `< 4.4.0`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:N

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

High

Availability

None

References

https://www.npmjs.com/package/ftp-srv

x_refsource_MISC

https://github.com/autovance/ftp-srv/security/advisories/GHSA-pmw4-jgxx-pcq9

x_refsource_CONFIRM

https://github.com/autovance/ftp-srv/issues/167

x_refsource_MISC

https://github.com/autovance/ftp-srv/issues/225

x_refsource_MISC

https://github.com/autovance/ftp-srv/pull/224

x_refsource_MISC

https://github.com/autovance/ftp-srv/commit/457b859450a37cba10ff3c431eb4aa67771122e3

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.