Vsftpdproject Vsftpd
By the Year
In 2024 there have been 0 vulnerabilities in Vsftpdproject Vsftpd . Last year Vsftpd had 1 security vulnerability published. Right now, Vsftpd is on track to have less security vulnerabilities in 2024 than it did last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 1 | 7.50 |
| 2022 | 1 | 7.40 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 1 | 9.80 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Vsftpd vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Vsftpdproject Vsftpd Security Vulnerabilities
VSFTPD 3.0.3 allows attackers to cause a denial of service due to limited number of connections allowed.
CVE-2021-30047
7.5 - High
- August 22, 2023
VSFTPD 3.0.3 allows attackers to cause a denial of service due to limited number of connections allowed.
ALPACA is an application layer protocol content confusion attack
CVE-2021-3618
7.4 - High
- March 23, 2022
ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.
Improper Certificate Validation
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor
CVE-2011-2523
9.8 - Critical
- November 27, 2019
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
Shell injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Debian Linux or by Vsftpdproject? Click the Watch button to subscribe.
