📦

ftpd

Vendor: netbsd

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.27% Exploit Prob.

Latest CVE CVE-2023-45198 Oct 05

Security Vulnerability Index

Page 1 / 1

7.5 CVSS

CVE-2023-45198

ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) before 20231001 is also vulnerable.

EPSS: 0.22%

Severity: HIGH

Oct 05, 2023

5.0 CVSS

CVE-2002-2245

ftpd in NetBSD 1.5 through 1.5.3 and 1.6 does not properly quote a digit in response to a STAT command for a filename that contains a carriage return followed by a digit, which can cause firewalls and other intermediary devices to lose proper track of the FTP session.

EPSS: 0.33%

Severity: MEDIUM

Dec 31, 2002

Displaying 2 of 2 Total Entries

Total 1 Sections