CVE-2021-27103 - Accellion FTA Server-Side Request Forgery (SSRF) Vulnerability
Project:Accellion
Product:FTA
Date Added:2021-11-03Due Date:2021-11-17
Vulnerability Name
Accellion FTA Server-Side Request Forgery (SSRF) Vulnerability
Description
Accellion FTA contains a server-side request forgery (SSRF) vulnerability exploited via a crafted POST request to wmProgressstat.html.
Known To Be Used in Ransomware Campaigns?
Known
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2021-27103