exploitDog

GHSA-h47c-m3f2-95qp

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path provided by the user, causing a NULL pointer dereference and denial of service, as demonstrated by a CWD /.. command.

In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path provided by the user, causing a NULL pointer dereference and denial of service, as demonstrated by a CWD /.. command.

Ссылки

EPSS

Процентиль: 68%

0.00564

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-476

Связанные уязвимости

CVE-2020-14149

CVSS3: 7.5

nvd

больше 5 лет назад

In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path provided by the user, causing a NULL pointer dereference and denial of service, as demonstrated by a CWD /.. command.

openSUSE-SU-2020:0865-1

suse-cvrf

больше 5 лет назад

Security update for uftpd

EPSS

Процентиль: 68%

0.00564

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-476