Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
atftp project atftp vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-11365
An issue exists in atftpd in atftp 0.7.1. A remote attacker may send a crafted packet triggering a stack-based buffer overflow due to an insecurely implemented strncpy call. The vulnerability is triggered by sending an error packet of 3 bytes or fewer. There are multiple instance...
Atftp Project Atftp 0.7.1
2 Github repositories
5.9
CVSSv3
CVE-2019-11366
An issue exists in atftpd in atftp 0.7.1. It does not lock the thread_list_mutex mutex before assigning the current thread data structure. As a result, the daemon is vulnerable to a denial of service attack due to a NULL pointer dereference. If thread_data is NULL when assigned t...
Atftp Project Atftp 0.7.1
7.5
CVSSv3
CVE-2021-41054
tftpd_file.c in atftp up to and including 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.
Atftp Project Atftp
Debian Debian Linux 9.0
7.5
CVSSv3
CVE-2020-6097
An exploitable denial of service vulnerability exists in the atftpd daemon functionality of atftp 0.7.git20120829-3.1+b1. A specially crafted sequence of RRQ-Multicast requests trigger an assert() call resulting in denial-of-service. An attacker can send a sequence of malicious p...
Atftp Project Atftp 0.7.git20120829-3.1+b1
Debian Debian Linux 9.0
Opensuse Leap 15.2
5.3
CVSSv3
CVE-2021-46671
options.c in atftp prior to 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.
Atftp Project Atftp
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started