CVE-2023-40044

CRITICAL KEV RANSOMWARE NUCLEI

Progress WS FTP Server < 8.7.4 - Insecure Deserialization

Title source: rule

Description

In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system.

Exploits (2)

nomisec SUSPICIOUS 1 stars

by kenbuckler · poc

https://github.com/kenbuckler/WS_FTP-CVE-2023-40044

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by sfewer-r7 · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/ws_ftp_rce_cve_2023_40044.rb

View Code ZIP pw:eip

Nuclei Templates (1)

WS_FTP Server - Insecure Deserialization

CRITICALVERIFIEDby 0x_Akoko

Shodan: title:"Ad Hoc Transfer"

References (9)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/174917/Progress-Software-WS_FTP-Unauthenticated-Remote-Code-Execution.html

[Third Party Advisory] https://attackerkb.com/topics/bn32f9sNax/cve-2023-40044

[Third Party Advisory] https://censys.com/cve-2023-40044/

[Vendor Advisory] https://community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023

[Exploit, Third Party Advisory] https://www.assetnote.io/resources/research/rce-in-progress-ws-ftp-ad-hoc-via-iis-http-modules-cve-2023-40044

[Product] https://www.progress.com/ws_ftp

[Broken Link, Third Party Advisory] https://www.rapid7.com/blog/post/2023/09/29/etr-critical-vulnerabilities-in-ws_ftp-server/

[Press/Media Coverage, Third Party Advisory] https://www.theregister.com/2023/10/02/ws_ftp_update/

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-40044

Scores

CVSS v3 10.0

EPSS 0.9444

EPSS Percentile 100.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Details

CISA KEV 2023-10-05

VulnCheck KEV 2023-10-01

InTheWild.io 2023-10-05

ENISA EUVD EUVD-2023-44651

Ransomware Use Confirmed

CWE

CWE-502

Status published

Products (1)

progress/ws_ftp_server < 8.7.4

Published Sep 27, 2023

KEV Added Oct 05, 2023

Tracked Since Feb 18, 2026