Known Vulnerabilities for Pure-ftpd by Pureftpd
Listed below are 10 of the newest known vulnerabilities associated with "Pure-ftpd" by "Pureftpd".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2021-40524 | In Pure-FTPd before 1.0.50, an incorrect max_filesize quota mechanism in the server allows attackers to upload files of unbou... | 7.5 - HIGH | 2021-09-05 | 2021-11-26 |
| CVE-2020-35359 | Pure-FTPd 1.0.48 allows remote attackers to prevent legitimate server use by making enough connections to exceed the connecti... | 7.5 - HIGH | 2020-12-26 | 2020-12-29 |
| CVE-2020-9365 | An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) read has been detected in the pure_strcmp function in uti... | 7.5 - HIGH | 2020-02-24 | 2023-11-07 |
| CVE-2020-9274 | An issue was discovered in Pure-FTPd 1.0.49. An uninitialized pointer vulnerability has been detected in the diraliases linke... | 7.5 - HIGH | 2020-02-26 | 2023-11-07 |
| CVE-2019-20176 | In Pure-FTPd 1.0.49, a stack exhaustion issue was discovered in the listdir function in ls.c. | 7.5 - HIGH | 2019-12-31 | 2023-11-07 |
| CVE-2017-12170 | Downstream version 1.0.46-1 of pure-ftpd as shipped in Fedora was vulnerable to packaging error due to which the original con... | 9.8 - CRITICAL | 2017-09-21 | 2019-10-03 |
| CVE-2011-3171 | Directory traversal vulnerability in pure-FTPd 1.0.22 and possibly other versions, when running on SUSE Linux Enterprise Serv... | 3.6 - LOW | 2011-11-04 | 2017-08-29 |
| CVE-2011-1575 | The STARTTLS implementation in ftp_parser.c in Pure-FTPd before 1.0.30 does not properly restrict I/O buffering, which allows... | 5.8 - MEDIUM | 2011-05-23 | 2014-02-21 |
| CVE-2011-0988 | pure-ftpd 1.0.22, as used in SUSE Linux Enterprise Server 10 SP3 and SP4, and Enterprise Desktop 10 SP3 and SP4, when running... | 4.4 - MEDIUM | 2011-04-18 | 2017-08-17 |
| CVE-2011-0418 | The glob implementation in Pure-FTPd before 1.0.32, and in libc in NetBSD 5.1, does not properly expand expressions containin... | 4 - MEDIUM | 2011-05-24 | 2011-09-22 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Pureftpd | Pure-ftpd | 1.0.9 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.8 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.7 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.6 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.5 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.49 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.48 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.47 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.46-1 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.46 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.45 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.44 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.43 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.42 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.41 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.40 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.4 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.39 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.38 | All | All | All |
| Application | Pureftpd | Pure-ftpd | 1.0.37 | All | All | All |