vsftpd before 1.2.2, when under heavy load, allows attackers to cause a denial of service (crash) via a SIGCHLD signal during a malloc or free call, which is not re-entrant.

Threat-Mapped Scoring

Score: 1.5

Priority: P4 - Informational (Low)

• S10 – Denial of Service

EPSS

Score: 0.01911
Percentile: 0.82497

CVSS Scoring

Affected Products

• cpe:2.3:a:beasts:vsftpd:1.2.0:*:*:*:*:*:*:*
• cpe:2.3:a:beasts:vsftpd:1.2.1:*:*:*:*:*:*:*

← Back to Home