Privilege Escalation Vulnerability in MELAG FTP Server 2.2.0.4

Privilege Escalation Vulnerability in MELAG FTP Server 2.2.0.4

CVE-2021-41635 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

When installed as Windows service MELAG FTP Server 2.2.0.4 is run as SYSTEM user, which grants remote attackers to abuse misconfigurations or vulnerabilities with administrative access over the entire host system.

Learn more about our Cis Benchmark Audit For Server Software.