Skip to main content

Freeftpd

3 CVEs product

Monthly

CVE-2022-27052 HIGH POC This Week

FreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows local users to launch processes with elevated privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Freeftpd
NVD GitHub
CVSS 3.1
7.8
EPSS
0.3%
CVE-2019-19383 HIGH POC This Week

freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted SIZE command (this is exploitable even if logging is disabled). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Freeftpd
NVD GitHub
CVSS 3.1
8.8
EPSS
2.8%
CVE-2012-6067 CRITICAL Act Now

freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an OpenSSH client with modified versions of ssh.c and. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSH Authentication Bypass Freeftpd
NVD
CVSS 2.0
10.0
EPSS
1.0%
EPSS 0% CVSS 7.8
HIGH POC This Week

FreeFtpd version 1.0.13 and below contains an unquoted service path vulnerability which allows local users to launch processes with elevated privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Freeftpd
NVD GitHub
EPSS 3% CVSS 8.8
HIGH POC This Week

freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted SIZE command (this is exploitable even if logging is disabled). Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Buffer Overflow Freeftpd
NVD GitHub
EPSS 1% CVSS 10.0
CRITICAL Act Now

freeFTPd.exe in freeFTPd through 1.0.11 allows remote attackers to bypass authentication via a crafted SFTP session, as demonstrated by an OpenSSH client with modified versions of ssh.c and. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SSH Authentication Bypass Freeftpd
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy