RSS   Vulnerabilities for 'Kiteworks'   RSS

2021-06-23
 
CVE-2021-31585

CWE-269
 

 
Accellion Kiteworks before 7.3.1 allows a user with Admin privileges to escalate their privileges by generating SSH passwords that allow local access.

 
 
CVE-2021-31586

CWE-89
 

 
Accellion Kiteworks before 7.4.0 allows an authenticated user to perform SQL Injection via LDAPGroup Search.

 

 >>> Vendor: Accellion 5 Products
Secure file transfer appliance
File transfer appliance
Kiteworks appliance
FTA
Kiteworks


Copyright 2021, cxsecurity.com

 

Back to Top