ftpd before "NetBSD-ftpd 20230930" can leak information about the host filesystem before authentication via an MLSD or MLST command. tnftpd (the portable version of NetBSD ftpd) before 20231001 is also vulnerable.
History

Thu, 19 Sep 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-10-05T00:00:00

Updated: 2024-09-19T17:42:09.742Z

Reserved: 2023-10-05T00:00:00

Link: CVE-2023-45198

cve-icon Vulnrichment

Updated: 2024-08-02T20:14:19.800Z

cve-icon NVD

Status : Modified

Published: 2023-10-05T05:15:42.257

Modified: 2024-11-21T08:26:32.040

Link: CVE-2023-45198

cve-icon Redhat

No data.