Every CVE whose affected-product data names Vsftpd Project Vsftpd, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2011-2523 — CVSS 9.8 (critical): vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
CVE-2021-30047 — CVSS 7.5 (high): VSFTPD 3.0.3 allows attackers to cause a denial of service due to limited number of connections allowed.
CVE-2021-3618 — CVSS 7.4 (high): ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using…
CVE-2015-1419 — CVSS 5.0 (medium): Unspecified vulnerability in vsftpd 3.0.2 and earlier allows remote attackers to bypass access restrictions via unknown vectors, related to…
CVE-2011-0762 — CVSS 4.0 (medium): The vsf_filename_passes_filter function in ls.c in vsftpd before 2.3.3 allows remote authenticated users to cause a denial of service (CPU…