cbcvebase.
CVE-2024-0546
published 2024-01-15

CVE-2024-0546: A vulnerability, which was classified as problematic, has been found in EasyFTP 1.7.0. This issue affects some unknown processing of the component LIST Command…

PriorityP356high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
EXPLOIT
EPSS
6.82%
93.2th percentile
A vulnerability, which was classified as problematic, has been found in EasyFTP 1.7.0. This issue affects some unknown processing of the component LIST Command Handler. The manipulation leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250715.

Affected

1 ranges
VendorProductVersion rangeFixed in
easyftpeasyftp

Detection & IOCsextracted from sources · hover to see the quote

versionEasyFTP Server 1.7.0.11
commandLIST
  • Monitor for abnormally large or malformed LIST command payloads sent to EasyFTP Server over FTP (default port 21), which may indicate a buffer overflow exploitation attempt.
  • Cross-reference with the related Metasploit module 'easyftp_cwd_fixret' as both likely exploit the same underlying vulnerability in EasyFTP Server 1.7.0.x via different command vectors.
  • ·The vulnerability is classified as 'problematic' (denial of service), but the Metasploit module title references a 'Stack Buffer Overflow', suggesting potential for code execution beyond DoS depending on exploitation conditions.
  • ·The affected component is specifically the LIST Command Handler; other FTP commands (e.g., CWD) in EasyFTP 1.7.0.x may share the same root vulnerability and should also be monitored.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.