Directory Traversal Vulnerability in Sky File v2.1.0 FTP Server Allows Unauthorized Access to Sensitive Data

Directory Traversal Vulnerability in Sky File v2.1.0 FTP Server Allows Unauthorized Access to Sensitive Data

CVE-2020-23040 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows attackers to access sensitive data and files via 'null' path commands.

Learn more about our Cis Benchmark Audit For Server Software.