CVE-2020-9272
published 2020-02-20CVE-2020-9272: ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.
high7.5CVSS 3.1
AVNACLPRNUINSUCHINAN
ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | proftpd-dfsg | < proftpd-dfsg 1.3.6c-1 (bookworm) | proftpd-dfsg 1.3.6c-1 (bookworm) |
| opensuse | backports_sle | — | — |
| opensuse | leap | — | — |
| proftpd | proftpd | < 1.3.6c | 1.3.6c |
| siemens | simatic_net_cp_1543-1_firmware | < 3.0 | 3.0 |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
osv7.5HIGH