CVE Vulnerabilities

CVE-2014-8327

Published: Oct 27, 2014 | Modified: Sep 08, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4 MEDIUM
AV:N/AC:L/Au:S/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The fal_sftp extension before 0.2.6 for TYPO3 uses weak permissions for sFTP driver files and folders, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

Affected Software

Name Vendor Start Version End Version
Fal_sftp Fal_sftp_project * 0.2.5
Fal_sftp Fal_sftp_project 0.2.4 0.2.4

References