CVE-2024-46483

Xlight FTP Server <3.9.4.3 has an integer overflow vulnerability in the packet parsing logic of the SFTP server, which can lead to a heap overflow with attacker-controlled content.
References
Configurations

No configuration.

History

23 Oct 2024, 19:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-190

23 Oct 2024, 15:12

Type Values Removed Values Added
Summary
  • (es) El servidor FTP Xlight &lt;3.9.4.3 tiene una vulnerabilidad de desbordamiento de enteros en la lógica de análisis de paquetes del servidor SFTP, lo que puede provocar un desbordamiento de almacenamiento dinámico con contenido controlado por el atacante.

22 Oct 2024, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-22 22:15

Updated : 2024-10-23 19:35


NVD link : CVE-2024-46483

Mitre link : CVE-2024-46483

CVE.ORG link : CVE-2024-46483


JSON object : View

Products Affected

No product.

CWE
CWE-190

Integer Overflow or Wraparound