CVE Details
Basic Information
| Title | FreeFloat FTP Server XMKD Command buffer overflow |
|---|---|
| Type | cve |
| Published | 2025-06-05T15:31:04.734Z |
| Last Seen |
Product Information
| Vendor | FreeFloat |
|---|---|
| Product | FTP Server |
| Version | 1.0 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N |
| Confidentiality Impact | |
| Integrity Impact | |
| Availability Impact |
AI Analysis
| AI Description | A buffer overflow vulnerability in the XMKD Command Handler of FreeFloat FTP Server 1.0 allows remote attackers to execute arbitrary code, potentially leading to system compromise. This issue is critical and can be exploited publicly. |
|---|---|
| AI Severity | High |
| Vendor | FreeFloat |
| Product | FreeFloat FTP Server |
| Affected Version | 1.0 |
Affected Products
- FreeFloat FTP Server 1.0
Additional Information
| CVE List | |
|---|---|
| CWE List | CWE-120, CWE-119 |
| Bulletin Family |
References
Description
A vulnerability was found in FreeFloat FTP Server 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the component XMKD Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.