First published: Wed Aug 28 2024(Updated: )
In WS_FTP Server versions before 8.8.8 (2022.0.8), a Missing Critical Step in Multi-Factor Authentication of the Web Transfer Module allows users to skip the second-factor verification and log in with username and password only.
Credit: security@progress.com
Affected Software | Affected Version | How to fix |
---|---|---|
Progress Ws Ftp Server | <8.8.8 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.