Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

380 matches found

CNNVD
CNNVDadded 2022/07/17 12:0 a.m.2 views

FileZilla 安全漏洞

FileZilla is an open source FTP/SFTP client for Windows platform. A security vulnerability exists in FileZilla Server versions prior to 0.9.50, which originates from an unknown portion of the PORT Handler component and can be exploited by an attacker to remotely launch an attack...

4.3CVSS5.2AI score0.00434EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2022/06/07 9:15 p.m.1 views

CVE-2022-29620

FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability...

6.5CVSS5.9AI score0.01689EPSS
Exploits1References4
OSV
OSVadded 2022/06/07 9:15 p.m.1 views

CVE-2022-29620

FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability...

6.5CVSS5.8AI score0.01689EPSS
Exploits1References3
NVD
NVDadded 2022/06/07 9:15 p.m.14 views

CVE-2022-29620

FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability...

6.5CVSS0.01689EPSS
Exploits1References3
Prion
Prionadded 2022/06/07 9:15 p.m.15 views

Design/Logic Flaw

DISPUTED FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability...

4.3CVSS6.3AI score0.01689EPSS
Exploits1References3Affected Software1
UbuntuCve
UbuntuCveadded 2022/06/07 9:15 p.m.63 views

CVE-2022-29620

FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability...

6.5CVSS6.6AI score0.01689EPSS
Exploits1References4
Cvelist
Cvelistadded 2022/06/07 8:7 p.m.19 views

CVE-2022-29620

FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability...

6.5AI score0.01689EPSS
Exploits1References3
CVE
CVEadded 2022/06/07 8:7 p.m.67 views

CVE-2022-29620

FileZilla v3.59.0 is affected by a memory-dump exposure where an attacker can obtain cleartext passwords of connected SSH/FTP servers. This is consistently described across Red Hat, Ubuntu, NVD, CVE records, and CNNVD, all noting the vendor does not consider it a vulnerability or a lack of a publ...

6.5CVSS6.3AI score0.01689EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologiesadded 2022/06/07 12:0 a.m.3 views

PT-2022-19732 · Filezilla · Filezilla

Name of the Vulnerable Software and Affected Versions: FileZilla version 3.59.0 Description: The issue allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump. It is noted that the vendor does not consider this a vulnerability. Recommendations: For FileZil...

6.5CVSS6.8AI score0.01689EPSS
Exploits1References8
CNNVD
CNNVDadded 2022/06/07 12:0 a.m.3 views

FileZilla 安全漏洞

FileZilla is an open source FTP/SFTP client for Windows-based platforms. A security vulnerability exists in FileZilla version v3.59.0. An attacker exploits the vulnerability to obtain the plaintext password of a connected SSH or FTP server via a memory dump...

6.5CVSS6.6AI score0.01689EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2022/05/27 12:0 a.m.26 views

Debian DLA-3026-1 : filezilla - LTS security update

The remote Debian 9 host has packages installed that are affected by a vulnerability as referenced in the dla-3026 advisory. Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious fzsftp binary in the user's home directory. For Debian 9 stretch,...

7.8CVSS7.6AI score0.02484EPSS
Exploits0References5
OpenVAS
OpenVASadded 2022/05/27 12:0 a.m.17 views

Debian: Security Advisory (DLA-3026-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.02484EPSS
Exploits0References4
Debian
Debianadded 2022/05/26 12:58 p.m.26 views

[SECURITY] [DLA 3026-1] filezilla security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3026-1 [email protected] https://www.debian.org/lts/security/ Andreas Rönnquist May 26, 2022 https://wiki.debian.org/LTS -...

7.8CVSS7.6AI score0.02484EPSS
Exploits0
OSV
OSVadded 2022/05/26 12:0 a.m.23 views

DLA-3026-1 filezilla - security update

Bulletin has no description...

7.8CVSS7.4AI score0.02484EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2022/05/20 10:43 p.m.22 views

CVE-2019-5429

Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory...

9.6CVSS5.2AI score0.02484EPSS
Exploits0References1
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.12 views

Mageia: Security Advisory (MGASA-2013-0242)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.4AI score0.03447EPSS
Exploits4References8
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2019-0153)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.7AI score0.03937EPSS
Exploits0References7
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2021-0380)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.0312EPSS
Exploits0References8
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.6 views

Mageia: Security Advisory (MGASA-2019-0417)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References5
OpenVAS
OpenVASadded 2022/01/28 12:0 a.m.20 views

Mageia: Security Advisory (MGASA-2015-0098)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

2.1CVSS6.5AI score0.00585EPSS
Exploits0References7
Rows per page
Query Builder