CVE-2018-16791
Severity Score
9.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
In SolarWinds SFTP/SCP Server through 2018-09-10, the configuration file is world readable and writable, and stores user passwords in an insecure manner, allowing an attacker to determine passwords for potentially privileged accounts. This also grants the attacker an ability to backdoor the server.
En SolarWinds SFTP/SCP Server hasta el 10/09/2018, el archivo de configuración puede ser leído y escrito por cualquier usuario y almacena las contraseñas de los usuarios de forma insegura, lo que permite que un atacante determine contraseñas para las cuentas potencialmente privilegiadas. Esto también otorga al atacante la capacidad de entrar en el servidor mediante una puerta trasera.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2018-09-10 CVE Reserved
- 2018-12-05 CVE Published
- 2023-03-07 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-522: Insufficiently Protected Credentials
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://seclists.org/fulldisclosure/2018/Dec/0 | Mailing List |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Solarwinds Search vendor "Solarwinds" | Sftp\/scp Server Search vendor "Solarwinds" for product "Sftp\/scp Server" | <= 20180910 Search vendor "Solarwinds" for product "Sftp\/scp Server" and version " <= 20180910" | - |
Affected
| ||||||