2 matches found
CVE-2023-24042
A race condition in LightFTP through 2.2 allows an attacker to achieve path traversal via a malformed FTP request. A handler thread can use an overwritten context-FileName...
CVE-2023-24042
CVE-2023-24042 concerns a race condition in LightFTP up to version 2.2 that allows path traversal via a malformed FTP request. The issue stems from a handler thread potentially using an overwritten context->FileName, enabling access to unintended paths. Affected software: LightFTP (versions 1....