Vulnerability CVE-2023-40044


Published: 2023-09-27

Description:
In WS_FTP Server version 8.7.0 prior to 8.7.4 and

version 8.8.0 prior to 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system.  

 References:
https://community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023
https://www.progress.com/ws_ftp

Copyright 2026, cxsecurity.com

 

Back to Top