ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) before 20231001 is also vulnerable.
Metrics
Affected Vendors & Products
References
History
Thu, 19 Sep 2024 18:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-10-05T00:00:00
Updated: 2024-09-19T17:42:09.742Z
Reserved: 2023-10-05T00:00:00
Link: CVE-2023-45198
Vulnrichment
Updated: 2024-08-02T20:14:19.800Z
NVD
Status : Modified
Published: 2023-10-05T05:15:42.257
Modified: 2024-11-21T08:26:32.040
Link: CVE-2023-45198
Redhat
No data.