CVE-2024-57392

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Feb 6, 2025

Updated: Feb 11, 2025

CWE ID 120

Summary

CVE-2024-57392 is a newly identified buffer overflow vulnerability in Proftpd, as indicated in commit 4017eff8. An attacker can exploit this issue by sending a specially crafted message to the ProFTPD service port. Consequences of successful exploitation include executing arbitrary code and causing a Denial of Service (DoS) on the targeted FTP service. This vulnerability poses a significant risk to systems running the affected version of Proftpd. It is strongly advised that users update their software to mitigate this threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2T6xyo
https://www.cve.org/CVERecord?id=CVE-2024-57392
https://nvd.nist.gov/vuln/detail/CVE-2024-57392

Back to Vulnerability Database

CVE-2024-57392

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations