Skip to main content

Psftpd

4 CVEs product

Monthly

CVE-2017-15272 MEDIUM This Month

The PSFTPd 10.0.4 Build 729 server stores its configuration inside PSFTPd.dat. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Authentication Bypass Psftpd
NVD
CVSS 3.0
5.3
EPSS
0.1%
CVE-2017-15271 MEDIUM POC THREAT This Month

A use-after-free issue could be triggered remotely in the SFTP component of PSFTPd 10.0.4 Build 729. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 19.3%.

Denial Of Service Memory Corruption Use After Free Psftpd
NVD Exploit-DB
CVSS 3.0
5.9
EPSS
19.3%
CVE-2017-15270 MEDIUM POC THREAT This Month

The PSFTPd 10.0.4 Build 729 server does not properly escape data before writing it into a Comma Separated Values (CSV) file. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 14.0%.

Information Disclosure Psftpd
NVD Exploit-DB
CVSS 3.0
5.3
EPSS
14.0%
CVE-2017-15269 MEDIUM This Month

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Psftpd
NVD
CVSS 3.0
4.3
EPSS
0.2%
EPSS 0% CVSS 5.3
MEDIUM This Month

The PSFTPd 10.0.4 Build 729 server stores its configuration inside PSFTPd.dat. Rated medium severity (CVSS 5.3), this vulnerability is low attack complexity. No vendor patch available.

Microsoft Authentication Bypass Psftpd
NVD
EPSS 19% CVSS 5.9
MEDIUM POC THREAT This Month

A use-after-free issue could be triggered remotely in the SFTP component of PSFTPd 10.0.4 Build 729. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and EPSS exploitation probability 19.3%.

Denial Of Service Memory Corruption Use After Free +1
NVD Exploit-DB
EPSS 14% CVSS 5.3
MEDIUM POC THREAT This Month

The PSFTPd 10.0.4 Build 729 server does not properly escape data before writing it into a Comma Separated Values (CSV) file. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 14.0%.

Information Disclosure Psftpd
NVD Exploit-DB
EPSS 0% CVSS 4.3
MEDIUM This Month

The PSFTPd 10.0.4 Build 729 server does not prevent FTP bounce scans by default. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Psftpd
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy