CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

145 matches found

UbuntuCve•added 2026/05/13 9:16 p.m.•6 views

CVE-2026-8328

The ftpcp function in Lib/ftplib.py was not updated when CVE-2021-4189 was fixed. While makepasv was patched to replace server-supplied PASV host addresses with the actual peer address getpeername0, ftpcp still calls parse227 directly and passes the raw attacker-controllable IP address and port t...

5.9CVSS5.8AI score0.00051EPSS

Exploits0References5

OSV•added 2026/05/13 8:14 p.m.•3 views

PSF-2026-24

5.9CVSS5.8AI score0.00051EPSS

Exploits0References3

Debian CVE•added 2026/05/12 8:37 p.m.•6 views

CVE-2026-44240

basic-ftp is an FTP client for Node.js. Prior to 5.3.1, basic-ftp is vulnerable to client-side denial of service when parsing FTP control-channel multiline responses. A malicious or compromised FTP server can send an unterminated multiline response during the initial FTP banner phase, before...

7.5CVSS5.9AI score0.00029EPSS

Exploits0

OSV•added 2026/04/25 5:49 a.m.•4 views

OESA-2026-2063 openvswitch security update

Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. Security Fixes: "Description\n===========\n\nMultiple versions of Open vSwitch are vulnerable to crafted FTP payloads\ncausing invalid memory accesses, potential...

5.9CVSS5.8AI score0.00129EPSS

Exploits0References2

Metasploit•added 2026/04/02 7:2 p.m.•116 views

HTTPS Fetch, Windows Executable Download (http,https,ftp) and Execute

Fetch and execute an x86 payload from an HTTPS server. Download an EXE from an HTTPS/FTP URL and execute it Module Options msf use payload/cmd/windows/https/x86/downloadexec msf payloaddownloadexec show actions ...actions... msf payloaddownloadexec set ACTION msf payloaddownloadexec show options...

5.9AI score

Exploits0

CNNVD•added 2026/03/03 12:0 a.m.•1 views

Weintek cMT 安全漏洞

Weintek cMT is a human-computer interface application developed by Weintek Corporation. Version 2.1.53 of Weintek cMT contains a security vulnerability, which stems from hard-coded passwords in the FTP protocol...

7.5CVSS5.8AI score0.0005EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 9:50 a.m.•5 views

CVE-2020-24056

A hardcoded credentials vulnerability exists in Verint 5620PTZ VerintFW042, Verint 4320 V4320FW023, V4320FW031, and Verint S5120FD VerintFW042units. This could cause a confidentiality issue when using the FTP, Telnet, or SSH protocols...

7.5CVSS6.9AI score0.0029EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:33 a.m.•4 views

CVE-2019-7225

The ABB HMI components implement hidden administrative accounts that are used during the provisioning phase of the HMI interface. These credentials allow the provisioning tool "Panel Builder 600" to flash a new interface and Tags MODBUS coils mapping to the HMI. These credentials are the idal123...

8.8CVSS7.1AI score0.0021EPSS

Exploits1References1

Positive Technologies•added 2025/12/16 12:0 a.m.•3 views

PT-2025-51619

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the netfilter module related to Network Address Translation NAT and connection tracking conntrack. Specifically, the problem arises when handlin...

5.4AI score0.00066EPSS

Exploits0