Vsftpd Security Vulnerabilities and Issues — Vsftpd CVE List

Lucene search

Vsftpd ProjectVsftpd

5 matches found

CVE•added 2022/03/23 8:15 p.m.•2430 views

CVE-2021-3618

ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from...

7.4CVSS7.5AI score0.0045EPSS

CVE•added 2019/11/27 9:15 p.m.•1428 views

CVE-2011-2523

vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.

10CVSS9.3AI score0.94226EPSS

CVE•added 2023/08/22 7:16 p.m.•966 views

CVE-2021-30047

VSFTPD 3.0.3 allows attackers to cause a denial of service due to limited number of connections allowed.

7.5CVSS7.3AI score0.00306EPSS

CVE•added 2015/01/28 11:59 a.m.•763 views

CVE-2015-1419

Unspecified vulnerability in vsftpd 3.0.2 and earlier allows remote attackers to bypass access restrictions via unknown vectors, related to deny_file parsing.

5CVSS6.6AI score0.3529EPSS

CVE•added 2011/03/02 8:0 p.m.•207 views

CVE-2011-0762

The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU consumption and process slot exhaustion) via crafted glob expressions in STAT commands in multiple FTP sessions, a different vulnerability than CVE-2010-2632.

4CVSS7.2AI score0.38386EPSS