CVE-2022-22899
published 2022-02-17CVE-2022-22899: Core FTP / SFTP Server v2 Build 725 was discovered to allow unauthenticated attackers to cause a Denial of Service (DoS) via a crafted packet through the SSH…
PriorityP420medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
EPSS
1.03%
59.3th percentile
Core FTP / SFTP Server v2 Build 725 was discovered to allow unauthenticated attackers to cause a Denial of Service (DoS) via a crafted packet through the SSH service.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| coreftp | core_ftp | — | — |
| ivanti | pulse_connect_secure | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
nvdv2.02.6LOWAV:N/AC:H/Au:N/C:N/I:N/A:P
cisa8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-q27g-667c-gwvg: Core FTP / SFTP Server v2 Build 725 was discovered to allow unauthenticated attackers to cause a Denial of Service (DoS) via a crafted packet through
ghsa_unreviewed·2022-02-18
CVE-2022-22899 [MEDIUM] CWE-400 GHSA-q27g-667c-gwvg: Core FTP / SFTP Server v2 Build 725 was discovered to allow unauthenticated attackers to cause a Denial of Service (DoS) via a crafted packet through
Core FTP / SFTP Server v2 Build 725 was discovered to allow unauthenticated attackers to cause a Denial of Service (DoS) via a crafted packet through the SSH service.
Ivanti
Pulse Connect Secure Command Injection
vendor_ivanti·2021-11-03·CVSS 8.8
CVE-2021-22899 [HIGH] Pulse Connect Secure Command Injection
Pulse Connect Secure Command Injection
Ivanti Pulse Connect Secure contains a command injection vulnerability that allows remote authenticated users to perform remote code execution via Windows File Resource Profiles.
CVE IDs: CVE-2021-22899
Affected products: Pulse Connect Secure
This vulnerability is listed in the CISA Known Exploited Vulnerabilities catalog.
Required Action: Apply updates per vendor instructions.
Remediation Due Date: 2022-05-03
CISA
Ivanti Pulse Connect Secure Command Injection Vulnerability
cisa·2021-11-03·CVSS 8.8
CVE-2021-22899 [HIGH] CWE-77 Ivanti Pulse Connect Secure Command Injection Vulnerability
Vulnerability: Ivanti Pulse Connect Secure Command Injection Vulnerability
Affected: Ivanti Pulse Connect Secure
Ivanti Pulse Connect Secure contains a command injection vulnerability that allows remote authenticated users to perform remote code execution via Windows File Resource Profiles.
Required Action: Apply updates per vendor instructions.
Notes: Reference CISA's ED 21-03 (https://www.cisa.gov/news-events/directives/ed-21-03-mitigate-pulse-connect-secure-product-vulnerabilities) for further guidance and requirements. Note: The due date for addressing this vulnerability aligns with the requirements outlined in ED 21-03. https://nvd.nist.gov/vuln/detail/CVE-2021-22899
Remediation Due Date: 2022-05-03
No detection rules found.
No public exploits indexed.
Wiz
CVE-2019-25654 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2019-25654 [CRITICAL] CVE-2019-25654 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2019-25654 :
CoreFTP Server vulnerability analysis and mitigation
Core FTP/SFTP Server 1.2 contains a buffer overflow vulnerability that allows attackers to crash the service by supplying an excessively long string in the User domain field. Attackers can paste a malicious payload containing 7000 bytes of data into the domain configuration to trigger an application crash and deny service.
Source : NVD
## 8.7
Score
Published March 30, 2026
Severity HIGH
CNA Score 8.7
Affected Technologies
CoreFTP Server
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 16
Exploitation Probability (EPSS) 0.1
Affected packages and libraries
cpe:2.3:a:coreftp:core_ftp
Sources
Windows Severity HIG
Wiz
CVE-2019-25686 Impact, Exploitability, and Mitigation Steps | Wiz
blogs_wiz·CVSS 9.8
CVE-2019-25686 [CRITICAL] CVE-2019-25686 Impact, Exploitability, and Mitigation Steps | Wiz
## CVE-2019-25686 :
CoreFTP Server vulnerability analysis and mitigation
Core FTP 2.0 build 653 contains a denial of service vulnerability in the PBSZ command that allows unauthenticated attackers to crash the service by sending a malformed command with an oversized buffer. Attackers can send a PBSZ command with a payload exceeding 211 bytes to trigger an access violation and crash the FTP server process.
Source : NVD
## 8.7
Score
Published April 5, 2026
Severity HIGH
CNA Score 8.7
Affected Technologies
CoreFTP Server
Has Public Exploit Yes
Has CISA KEV Exploit No
CISA KEV Release Date N/A
CISA KEV Due Date N/A
Exploitation Probability Percentile (EPSS) 13.4
Exploitation Probability (EPSS) N/A
Affected packages and libraries
cpe:2.3:a:coreftp:core_ftp
Sources
NVD
Win
2022-02-17
Published