CVE-2025-5220

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions FreeFloat FTP Server version 1.0.0

Description A critical vulnerability was found in the GET Command Handler component of FreeFloat FTP Server, leading to a buffer overflow. This issue can be exploited remotely. The manipulation with the GET Command leads to the buffer overflow.

Recommendations For FreeFloat FTP Server version 1.0.0, as a temporary workaround, consider disabling the GET Command Handler component until a patch is available. Restrict access to the vulnerable component to minimize the risk of exploitation.

Exploit

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-120

Related Identifiers

CVE-2025-5220

Affected Products

Freefloat Ftp Server

CVE-2025-5220

Weakness Enumeration

Related Identifiers

Affected Products

References · 10