Cerberusftp Ftp Server — known CVE vulnerabilities
Every CVE whose affected-product data names Cerberusftp Ftp Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2026-6265 — CVSS 8.8 (high): Insecure preserved inherited permissions vulnerability in Cerberus FTP Server on Windows allows Privilege Escalation.This issue has been…
CVE-2020-5196 — CVSS 8.1 (high): Cerberus FTP Server Enterprise Edition prior to versions 11.0.3 and 10.0.18 allows an authenticated attacker to create files, display…
CVE-2017-6367 — CVSS 7.5 (high): In Cerberus FTP Server 8.0.10.1, a crafted HTTP request causes the Windows service to crash. The attack methodology involves a long Host…
CVE-2012-2999 — CVSS 6.8 (medium): Multiple cross-site request forgery (CSRF) vulnerabilities in the web interface in Cerberus FTP Server before 5.0.5.0 allow remote…
CVE-2019-25046 — CVSS 6.1 (medium): The Web Client in Cerberus FTP Server Enterprise before 10.0.19 and 11.x before 11.0.4 allows XSS via an SVG document.
CVE-2020-5195 — CVSS 6.1 (medium): Reflected XSS through an IMG element in Cerberus FTP Server prior to versions 11.0.1 and 10.0.17 allows a remote attacker to execute…
CVE-2020-5194 — CVSS 5.4 (medium): The zip API endpoint in Cerberus FTP Server 8 allows an authenticated attacker without zip permission to use the zip functionality via an…
CVE-2012-5301 — CVSS 5.0 (medium): The default configuration of Cerberus FTP Server before 5.0.4.0 supports the DES cipher for SSH sessions, which makes it easier for remote…
CVE-2012-6339 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in the administrative web interface in Cerberus FTP Server before 5.0.6.0 allow (1)…
CVE-2004-2769 — CVSS 4.0 (medium): Cerberus FTP Server before 4.0.3.0 allows remote authenticated users to list hidden files, even when the "Display hidden files" option is…