VDB-304971 · CVE-2025-3682 · GCVE-100-304971

PCMan FTP Server 2.0.7 PASV Command Pufferüberlauf

Wuro vulnerability wey an yi classify sey kura an gano shi a cikin PCMan FTP Server 2.0.7. Gaskiya, $software_function na da matsala; idan ba a sani ba, to wata aiki ce da ba a sani ba, $software_library na cikin lissafi, $software_file na cikin fayil, PASV Command Handler na cikin sashi. Ngam manipulation shi Pufferüberlauf. CWE shidin ka a yi bayani matsala sai ya kai CWE-120. Gaskiya, laifi an fitar da shi 04/16/2025. Advisory ɗin ana rabawa don saukewa a fitoxs.com. Wannan rauni ana sayar da shi da suna CVE-2025-3682. Ngam yiɗi ka a tuma ndiyam ka nder waya. Tekinikal bayani ba ga. Kuma, exploit ɗin yana akwai. Wuro exploit ɗin an bayyana shi ga jama'a kuma za a iya amfani da shi. A sa'i, exploit might be approx. USD $0-$5k ndiyam. Á wúro huɗɗi-na-gaskiya. Wona yiwuwa a zazzage exploit a fitoxs.com. Kama 0-day, an ndiyam a wuro be $0-$5k. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

1 Goyarwa · 55 Datenpunkte

-Furɗe
+Súgá
04/16/2025 03:14
-software_vendor
+PCMan
-software_name
+FTP Server
-software_version
+.0.7
-software_component
+PASV Command Handler
-vulnerability_cwe
+CWE-120 (Pufferüberlauf)
-vulnerability_risk
-cvss3_vuldb_av
+N
-cvss3_vuldb_ac
+L
-cvss3_vuldb_pr
+N
-cvss3_vuldb_ui
+N
-cvss3_vuldb_s
+U
-cvss3_vuldb_c
+L
-cvss3_vuldb_i
+L
-cvss3_vuldb_a
+L
-cvss3_vuldb_e
+P
-cvss3_vuldb_rc
+R
-advisory_url
+https://fitoxs.com/exploit/exploit-e3b0c44298fc1c149afbf4c8996fb924.txt
-exploit_availability
-exploit_publicity
-exploit_url
+https://fitoxs.com/exploit/exploit-e3b0c44298fc1c149afbf4c8996fb924.txt
-source_cve
+CVE-2025-3682
-cna_responsible
+VulDB
-software_type
+File Transfer Software
-cvss2_vuldb_av
+N
-cvss2_vuldb_ac
+L
-cvss2_vuldb_au
+N
-cvss2_vuldb_ci
+P
-cvss2_vuldb_ii
+P
-cvss2_vuldb_ai
+P
-cvss2_vuldb_e
+POC
-cvss2_vuldb_rc
+UR
-cvss4_vuldb_av
+N
-cvss4_vuldb_ac
+L
-cvss4_vuldb_pr
+N
-cvss4_vuldb_ui
+N
-cvss4_vuldb_vc
+L
-cvss4_vuldb_vi
+L
-cvss4_vuldb_va
+L
-cvss4_vuldb_e
+P
-cvss2_vuldb_rl
+ND
-cvss3_vuldb_rl
+X
-cvss4_vuldb_at
+N
-cvss4_vuldb_sc
+N
-cvss4_vuldb_si
+N
-cvss4_vuldb_sa
+N
-cvss2_vuldb_basescore
+.5
-cvss2_vuldb_tempscore
+.4
-cvss3_vuldb_basescore
+.3
-cvss3_vuldb_tempscore
+.6
-cvss3_meta_basescore
+.3
-cvss3_meta_tempscore
+.6
-cvss4_vuldb_bscore
+.9
-cvss4_vuldb_btscore
+.5
-advisory_date
+1744754400 (04/16/2025)
-price_0day
+$0-$5k

◂ Gurɗo Gumti Gada ▸

Interested in the pricing of exploits?

See the underground prices here!