Denial of Service Vulnerability in Core FTP/SFTP Server by Core FTP
CVE-2022-22899

5.5MEDIUM

Key Information:

Vendor

Coreftp

Status
Core Ftp
Vendor
CVE Published:
17 February 2022

What is CVE-2022-22899?

Core FTP/SFTP Server version 2 Build 725 is exposed to a vulnerability that enables unauthenticated attackers to execute a Denial of Service (DoS) attack. This can be accomplished by sending specially crafted packets through the SSH service, potentially leading to service disruptions. Users of this software are advised to review their systems and implement mitigations to safeguard against this exposure.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://coreftp.com/forums/viewtopic.php?f=15&t=4022509
x_refsource_MISC
https://yoursecuritybores.me/coreftp-vulnerabilities/
x_refsource_MISC
http://coreftp.com
x_refsource_MISC

CVSS V3.1

Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.