cve/2023/CVE-2023-45687.md

### [CVE-2023-45687](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45687)
![](https://img.shields.io/static/v1?label=Product&message=Titan%20MFT&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=Titan%20SFTP&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=0%3C%3D%202.0.17.2298%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-384%20Session%20Fixation&color=brighgreen)

### Description

A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on Linux and Windows allows an attacker to bypass the server's authentication if they can trick an administrator into authorizating a session id of their choosing

### POC

#### Reference
- https://www.rapid7.com/blog/post/2023/10/16/multiple-vulnerabilities-in-south-river-technologies-titan-mft-and-titan-sftp-fixed/

#### Github
No PoCs found on GitHub currently.
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2023-45687](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-45687)`
			`![](https://img.shields.io/static/v1?label=Product&message=Titan%20MFT&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=Titan%20SFTP&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=0%3C%3D%202.0.17.2298%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-384%20Session%20Fixation&color=brighgreen)`

			`### Description`

			`A session fixation vulnerability in South River Technologies' Titan MFT and Titan SFTP servers on Linux and Windows allows an attacker to bypass the server's authentication if they can trick an administrator into authorizating a session id of their choosing`

			`### POC`

			`#### Reference`
			`- https://www.rapid7.com/blog/post/2023/10/16/multiple-vulnerabilities-in-south-river-technologies-titan-mft-and-titan-sftp-fixed/`

			`#### Github`
			`No PoCs found on GitHub currently.`