Confd0

**Name of the Vulnerable Software and Affected Versions** Python (affected versions not specified) **Description** The issue is related to the FTP client library in Python, specifically in PASV (passive) mode, where the library trusts the host from the PASV response by default. This allows an attacker to set up a malicious FTP server that can trick FTP clients into connecting back to a given IP address and port, potentially leading to FTP client scanning ports. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.