- Progress Software has released patches for a critical security hole and seven other vulnerabilities in WS_FTP Server Ad hoc Transfer Module and in the WS_FTP Server manager interface.
- The major flaw, tracked as CVE-2023-40044, boasts a full-blown CVSS score of 10.0, suggesting maximum severity.
- All versions of the software are vulnerable to this flaw.
- WS_FTP Server versions before 8.7.4 and 8.8.2 are specifically susceptible to this issue.
A Patch in Time Saves Nine
Progress Software has taken a decisive step against cyber miscreants by releasing corrective measures—not just one, but eight—for its WS_FTP Server Ad hoc Transfer Module and manager interface. So if you were looking to patch up things in life, here’s your perfect start!
’10’ – Not Just a Perfect Score, But a Dangerous Flaw Too!
Tagged under CVE-2023-40044, this flaw’s severity cannot be understated, scoring a perfect 10 on the Common Vulnerability Scoring System (CVSS). It’s like getting a full score on a test, but in a nerve-wracking jeopardy where you’d rather be a dropout.
Fair and Flawed- All Versions Under the Hammer
Brushing aside any discrimination, this flaw targets all versions of the software, making them equally vulnerable. So no matter what version you’re on, you’re not spared from this tech terror!
Ring the Bell- It’s Versions 8.7.4 and 8.8.2’s Turn to Burn
Alarm bells need to ring a notch louder for those hanging on to WS_FTP Server versions 8.7.4 and 8.8.2. These versions have “enjoyed” particular attention from the flaw and hence wear the riskier badge.
In a Nutshell
Progress Software has quickly acted by releasing patches for a major security flaw with a maximum severity score of 10.0 and seven other vulnerabilities in its WS_FTP Server Ad hoc Transfer Module and manager interface. Unfortunately, all versions of the software are on target, with versions 8.7.4 and 8.8.2 being in the direct line of fire. So, gear up and patch up, folks! Be it tech or life, we all know the importance of timely fixes- because, who said, “An update a day keeps the hackers away”?
Original Article: https://thehackernews.com/2023/09/progress-software-releases-urgent.html