Every CVE whose affected-product data names Troglobit Uftpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2020-20276 — CVSS 9.8 (critical): An unauthenticated stack-based buffer overflow vulnerability in common.c's handle_PORT in uftpd FTP server versions 2.10 and earlier can be…
CVE-2020-20277 — CVSS 9.8 (critical): There are multiple unauthenticated directory traversal vulnerabilities in different FTP commands in uftpd FTP server versions 2.7 to 2.10…
CVE-2020-14149 — CVSS 7.5 (high): In uftpd before 2.12, handle_CWD in ftpcmd.c mishandled the path provided by the user, causing a NULL pointer dereference and denial of…
CVE-2020-5204 — CVSS 6.5 (medium): In uftpd before 2.11, there is a buffer overflow vulnerability in handle_PORT in ftpcmd.c that is caused by a buffer that is 16 bytes large…
CVE-2020-5221 — CVSS 6.5 (medium): In uftpd before 2.11, it is possible for an unauthenticated user to perform a directory traversal attack using multiple different FTP…