CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

Cvelist•added 2026/04/04 1:51 p.m.•20 views

CVE-2018-25254 NICO-FTP 3.0.1.19 Buffer Overflow SEH

NICO-FTP 3.0.1.19 contains a structured exception handler buffer overflow vulnerability that allows remote attackers to execute arbitrary code by sending crafted FTP commands. Attackers can connect to the FTP service and send oversized data in response handlers to overwrite SEH pointers and...

9.8CVSS0.00455EPSS

Exploits1References3

CNNVD•added 2026/04/04 12:0 a.m.•4 views

NICO-FTP 缓冲区错误漏洞

NICO-FTP is a file transfer client software developed by NICO-FTP Corporation. Version NICO-FTP 3.0.1.19 contains a buffer error vulnerability. This vulnerability stems from a buffer overflow in the structured exception handler, which could allow remote attackers to execute arbitrary code by...

9.8CVSS6.5AI score0.00455EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2013-2700

Malware in sbrugna...

4CVSS6.2AI score0.00351EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-14860

Malware in sbrugna...

5.5CVSS5.6AI score0.00057EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-15602

Malware in sbrugna...

7.8CVSS7.5AI score0.01625EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•9 views

EUVD-2020-24835

Malware in sbrugna...

5.8CVSS5.9AI score0.00253EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2007-0428

Malware in sbrugna...

5CVSS6.4AI score0.02627EPSS

Exploits0References10

Tenable Nessus•added 2022/02/07 12:0 a.m.•24 views

Schneider Electric Modicon Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2013-2761)

The Schneider Electric M340 BMXNOE01xx and BMXP3420xx PLC modules allow remote authenticated users to cause a denial of service module crash via crafted FTP traffic, as demonstrated by the FileZilla FTP client. This plugin only works with Tenable.ot. Please visit...

4CVSS5.8AI score0.00351EPSS

Exploits0References3

NVD•added 2020/10/21 7:15 p.m.•17 views

CVE-2020-3564

A vulnerability in the FTP inspection engine of Cisco Adaptive Security Appliance ASA Software and Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass FTP inspection. The vulnerability is due to ineffective flow tracking of FTP traffic. An attacke...

5.8CVSS0.00253EPSS

Exploits0References1

Vulnrichment•added 2020/10/21 6:40 p.m.•11 views

CVE-2020-3564 Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software FTP Inspection Bypass Vulnerability

5.8CVSS7AI score0.00253EPSS

Exploits0References1

Talos•added 2019/10/08 12:0 a.m.•300 views

Schneider Electric Modicon M580 FTP incomplete firmware update denial-of-service vulnerability

Summary An exploitable denial-of-service vulnerability exists in the FTP firmware update function of the Schneider Electric Modicon M580 Programmable Automation Controller, firmware version SV2.80. A specially crafted set of FTP commands can cause the device to enter a recoverable fault state,...

4.9CVSS5.3AI score0.00362EPSS

Exploits0

CNVD•added 2019/09/26 12:0 a.m.•3 views

Cisco IOS XE FTP ALG Denial of Service Vulnerability

Cisco IOS XE is a set of modular operating system based on Linux kernel developed by Cisco for its network equipment. A denial of service vulnerability exists in the FTP Application Layer Gateway ALG feature used by Network Address Translation NAT, NAT64, and ZBFW in Cisco IOS XE. The vulnerabili...

8.6CVSS7AI score0.01058EPSS

Exploits0References1

NVD•added 2019/03/14 2:29 a.m.•15 views

CVE-2019-9760

FTPGetter Standard v.5.97.0.177 allows remote code execution when a user initiates an FTP connection to an attacker-controlled machine that sends crafted responses. Long responses can also crash the FTP client with memory corruption...

9.8CVSS9.7AI score0.73808EPSS

Exploits5References2

Prion•added 2018/04/16 9:29 p.m.•17 views

Design/Logic Flaw

A vulnerability in MikroTik Version 6.41.4 could allow an unauthenticated remote attacker to exhaust all available CPU and all available RAM by sending a crafted FTP request on port 21 that begins with many '\0' characters, preventing the affected router from accepting new FTP connections. The...

7.8CVSS7.4AI score0.17841EPSS

Exploits5References2Affected Software1

Exploit DB•added 2018/04/13 12:0 a.m.•63 views

MikroTik 6.41.4 - FTP daemon Denial of Service (PoC)

Title: MikroTik 6.41.4 Denial of service FTP daemon crash CVE: CVE-2018-10070 CWE: CWE-400 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Version : 6.41.4 Released 2018-Apr-05 | All Version Date: 13-05-2018 Category: Network Appliance Description: A vulnerabilit...

7.8CVSS7.6AI score0.17841EPSS

Exploits5

exploitpack•added 2018/04/13 12:0 a.m.•26 views

MikroTik 6.41.4 - FTP daemon Denial of Service PoC

MikroTik 6.41.4 - FTP daemon Denial of Service PoC Title: MikroTik 6.41.4 Denial of service FTP daemon crash CVE: CVE-2018-10070 CWE: CWE-400 Exploit Author: Hosein Askari FarazPajohan Vendor HomePage: https://mikrotik.com/ Version : 6.41.4 Released 2018-Apr-05 | All Version Date: 13-05-2018...

7.8CVSS7.6AI score0.17841EPSS

Exploits5

Packet Storm•added 2018/04/13 12:0 a.m.•187 views

MikroTik 6.41.4 Denial Of Service

7.6AI score0.17841EPSS

Exploits5

Amazon•added 2016/07/14 12:0 a.m.•52 views

Medium: wget

Issue Overview: GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource. CVE-2016-4971 Affected Packages: wget Issue Correction: Run yum update wget or yum update --advisory ALAS-2016-720 to update your system. New...

8.8CVSS7.4AI score0.73791EPSS

Exploits8

Cvelist•added 2016/06/30 5:0 p.m.•27 views

CVE-2016-4971

GNU wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource...

8.5AI score0.73791EPSS

Exploits8References13