Filtered by vendor Xlightftpd
Subscriptions
Filtered by product Xlight Ftp
Subscriptions
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2019-25681 | 1 Xlightftpd | 2 Xlight Ftp, Xlight Ftp Server | 2026-04-10 | 8.4 High |
| Xlight FTP Server 3.9.1 contains a structured exception handler (SEH) overwrite vulnerability that allows local attackers to crash the application and overwrite SEH pointers by supplying a crafted buffer string. Attackers can inject a 428-byte payload through the program execution field in virtual server configuration to trigger a buffer overflow that corrupts the SEH chain and enables potential code execution. | ||||
| CVE-2022-28998 | 1 Xlightftpd | 1 Xlight Ftp | 2024-11-21 | 8.1 High |
| Xlight FTP v3.9.3.2 was discovered to contain a stack-based buffer overflow which allows attackers to leak sensitive information via crafted code. | ||||
Page 1 of 1.