Vulnerabilities (CVE)

Filtered by vendor Netsarang Subscribe
Filtered by product Xftp
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-27963 2 Microsoft, Netsarang 2 Windows, Xftp 2023-12-10 6.9 MEDIUM 6.5 MEDIUM
Xftp 7.0.0088p and below contains a binary hijack vulnerability which allows attackers to execute arbitrary code via a crafted .exe file.
CVE-2019-17320 1 Netsarang 1 Xftp 2023-12-10 7.5 HIGH 9.8 CRITICAL
NetSarang XFTP Client 6.0149 and earlier version contains a buffer overflow vulnerability caused by improper boundary checks when copying file name from an attacker controlled FTP server. That leads attacker to execute arbitrary code by sending a crafted filename.