Known Vulnerabilities for Proftpd by Proftpd
Listed below are 10 of the newest known vulnerabilities associated with "Proftpd" by "Proftpd".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-9273 | In ProFTPD 1.3.7, it is possible to corrupt the memory pool by interrupting the data transfer channel. This triggers a use-af... | 8.8 - HIGH | 2020-02-20 | 2023-11-07 |
| CVE-2020-9272 | ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function. | 7.5 - HIGH | 2020-02-20 | 2021-11-09 |
| CVE-2019-19272 | An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer (a variable initializ... | 7.5 - HIGH | 2019-11-26 | 2019-12-11 |
| CVE-2019-19271 | An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A wrong iteration variable, used when checking a client ce... | 7.5 - HIGH | 2019-11-26 | 2019-12-11 |
| CVE-2019-19270 | An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. Failure to check for the appropriate field of a CRL entr... | 7.5 - HIGH | 2019-11-26 | 2023-11-07 |
| CVE-2019-19269 | An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer ... | 4.9 - MEDIUM | 2019-11-30 | 2023-11-07 |
| CVE-2019-18217 | ProFTPD before 1.3.6b and 1.3.7rc before 1.3.7rc2 allows remote unauthenticated denial-of-service due to incorrect handling o... | 7.5 - HIGH | 2019-10-21 | 2023-11-07 |
| CVE-2019-12815 | An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information dis... | 9.8 - CRITICAL | 2019-07-19 | 2023-11-07 |
| CVE-2017-7418 | ProFTPD before 1.3.5e and 1.3.6 before 1.3.6rc5 controls whether the home directory of a user could contain a symbolic link t... | 5.5 - MEDIUM | 2017-04-04 | 2019-08-08 |
| CVE-2016-3125 | The mod_tls module in ProFTPD before 1.3.5b and 1.3.6 before 1.3.6rc2 does not properly handle the TLSDHParamFile directive, ... | 7.5 - HIGH | 2016-04-05 | 2018-10-30 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Proftpd | Proftpd | 1.3.7 | rc2 | All | All |
| Application | Proftpd | Proftpd | 1.3.7 | rc1 | All | All |
| Application | Proftpd | Proftpd | 1.3.6c | All | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | rc4 | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | rc3 | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | rc2 | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | rc1 | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | beta | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | b | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | alpha | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | a | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | - | All | All |
| Application | Proftpd | Proftpd | 1.3.6 | All | All | All |
| Application | Proftpd | Proftpd | 1.3.5e | All | All | All |
| Application | Proftpd | Proftpd | 1.3.5d | All | All | All |
| Application | Proftpd | Proftpd | 1.3.5c | All | All | All |
| Application | Proftpd | Proftpd | 1.3.5b | All | All | All |
| Application | Proftpd | Proftpd | 1.3.5a | All | All | All |
| Application | Proftpd | Proftpd | 1.3.5 | rc3 | All | All |
| Application | Proftpd | Proftpd | 1.3.5 | rc2 | All | All |