Lucene search
K

898 matches found

Positive Technologies
Positive Technologies
added 2026/02/12 12:0 a.m.3 views

PT-2026-7890

Name of the Vulnerable Software and Affected Versions Open TFTP Server MultiThreaded version 1.7 Description A heap buffer overflow exists in the processRequest function of Open TFTP Server MultiThreaded. This issue can be triggered by sending a crafted DATA packet, potentially leading to a Denia...

5.7AI score0.00391EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/05 12:0 a.m.6 views

Odin Secure FTP Expert 安全漏洞

Odin Secure FTP Expert is an FTP client software developed by Odin Secure Corporation. Version 7.6.3 of Odin Secure FTP Expert contains a security vulnerability, which stems from improper handling of site information fields, potentially leading to application crashes...

8.4CVSS5.7AI score0.00184EPSS
Exploits0References3
OSV
OSV
added 2026/02/03 10:16 p.m.5 views

CVE-2020-37068

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code...

9.8CVSS6.2AI score0.00575EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/29 2:28 p.m.5 views

CVE-2020-36994 QlikView 12.50.20000.0 - 'FTP Server Address' Denial of Service

QlikView 12.50.20000.0 contains a denial of service vulnerability in the FTP server address input field that allows local attackers to crash the application. Attackers can paste a 300-character buffer into the FTP server address field to trigger an application crash and prevent normal functionali...

6.2CVSS6AI score0.00167EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/29 12:0 a.m.5 views

QlikView security vulnerabilities

QlikView is a business intelligence and data visualization analysis software developed by the American company QlikView Corporation. Version QlikView 12.50.20000.0 contains a security vulnerability. This vulnerability stems from a denial-of-service vulnerability in the FTP server address input...

6.2CVSS5.8AI score0.00167EPSS
Exploits0References3
OSV
OSV
added 2026/01/28 6:16 p.m.6 views

CVE-2020-36964

YATinyWinFTP contains a denial of service vulnerability that allows attackers to crash the FTP service by sending a 272-byte buffer with a trailing space. Attackers can exploit the service by connecting and sending a malformed command that triggers a buffer overflow and service crash...

8.7CVSS6.1AI score0.00396EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/27 12:0 a.m.7 views

Pablo Software Solutions Quick n Easy FTP Service Code Issues and Vulnerabilities

Pablo Software Solutions Quick n Easy FTP Service is a Windows platform FTP server software provided by Pablo Software Solutions. Version 3.2 of Pablo Software Solutions Quick n Easy FTP Service has a code vulnerability caused by an unquoted service path, which may allow local attackers to execut...

8.5CVSS6.2AI score0.00162EPSS
Exploits0References5
Fedora
Fedora
added 2026/01/23 12:56 a.m.8 views

[SECURITY] Fedora 43 Update: vsftpd-3.0.5-14.fc43

vsftpd is a Very Secure FTP daemon. It was written completely from scratch...

6.5CVSS5.8AI score0.00737EPSS
Exploits0
Veracode
Veracode
added 2026/01/22 10:27 a.m.6 views

Improper Access Control

Pterodactyl is vulnerable to Improper Access Control. The vulnerability is due to failure to revoke active SFTP sessions when user permissions are removed or modified, which allows an attacker with an existing SFTP connection to retain unauthorized file access after their privileges are revoked...

7.5CVSS5.9AI score0.00218EPSS
Exploits0References4Affected Software2
NVD
NVD
added 2026/01/21 6:16 p.m.7 views

CVE-2021-47865

ProFTPD 1.3.7a contains a denial of service vulnerability that allows attackers to overwhelm the server by creating multiple simultaneous FTP connections. Attackers can repeatedly establish connections using threading to exhaust server connection limits and block legitimate user access...

8.7CVSS0.00538EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/01/21 5:27 p.m.2 views

CVE-2021-47865 ProFTPD 1.3.7a - Remote Denial of Service

ProFTPD 1.3.7a contains a denial of service vulnerability that allows attackers to overwhelm the server by creating multiple simultaneous FTP connections. Attackers can repeatedly establish connections using threading to exhaust server connection limits and block legitimate user access...

8.7CVSS5.5AI score0.00538EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/01/21 5:27 p.m.5 views

CVE-2021-47865

ProFTPD 1.3.7a contains a denial of service vulnerability that allows attackers to overwhelm the server by creating multiple simultaneous FTP connections. Attackers can repeatedly establish connections using threading to exhaust server connection limits and block legitimate user access...

8.7CVSS5.4AI score0.00538EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/01/21 5:27 p.m.11 views

CVE-2021-47865

CVE-2021-47865 affects ProFTPD 1.3.7a. The vulnerability allows remote denial of service by spawning multiple simultaneous FTP connections, using threading to exhaust server connection limits and block legitimate users. Documented impact is high (availability impact), with CVSS 3.1/4.0 vectors sh...

8.7CVSS5.5AI score0.00538EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 4 : java-1.7.0-openjdk-1.7.0.161-2.6.12.0.AXS4 (AXSA:2017-2469:04)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2469:04 advisory. Multiple flaws were discovered in the RMI and Hotspot components in OpenJDK. An untrusted Java application or applet could use these flaws to...

9.6CVSS8.5AI score0.16181EPSS
Exploits2References17
NVD
NVD
added 2026/01/16 12:16 a.m.6 views

CVE-2021-47794

ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FTP accounts with shell injection payloads. Attackers can exploit the FTP account creation endpoint by injecting a reverse shell command that establishes a network connection to a...

8.8CVSS0.00906EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/15 11:25 p.m.4 views

CVE-2021-47794 ZesleCP 3.1.9 - Remote Code Execution (RCE) (Authenticated)

ZesleCP 3.1.9 contains an authenticated remote code execution vulnerability that allows attackers to create malicious FTP accounts with shell injection payloads. Attackers can exploit the FTP account creation endpoint by injecting a reverse shell command that establishes a network connection to a...

8.8CVSS8AI score0.00906EPSS
Exploits1References4
CVE
CVE
added 2026/01/15 11:25 p.m.12 views

CVE-2021-47794

CVE-2021-47794 affects ZesleCP 3.1.9. An authenticated attacker can exploit the FTP account creation endpoint to inject a reverse shell command, enabling remote code execution via shell injection in the created FTP accounts. The vulnerability is network-based with low attack complexity and requir...

8.8CVSS8AI score0.00906EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/01/15 10:9 a.m.6 views

RHSA-2026:0606 Red Hat Security Advisory: vsftpd security update

Bulletin has no description...

6.5CVSS6.9AI score0.00737EPSS
Exploits0References7
Metasploit
Metasploit
added 2026/01/14 6:54 p.m.309 views

TFTP Fetch, Linux Chmod

Fetch and execute an AARCH64 payload from a TFTP server. Runs chmod on the specified file with specified mode. Module Options msf use payload/cmd/linux/tftp/aarch64/chmod msf payloadchmod show actions ...actions... msf payloadchmod set ACTION msf payloadchmod show options ...show and set options...

5.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.5 views

MiracleLinux 3 : krb5-1.6.1-70.AXS3 (AXSA:2012-256:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-256:02 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of cleartex...

6.5CVSS6AI score0.03938EPSS
Exploits0References2
Rows per page
Query Builder