Privilege Escalation via Arbitrary SSH Key Addition in Accellion File Transfer Appliance (FTA)

Privilege Escalation via Arbitrary SSH Key Addition in Accellion File Transfer Appliance (FTA)

CVE-2016-2353 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The Accellion File Transfer Appliance (FTA) before FTA_9_12_40 allows local users to add an SSH key to an arbitrary group, and consequently gain privileges, via unspecified vectors.

Learn more about our User Device Pen Test.