CVE-2025-14242
EUVD-2026-246114.01.2026, 16:15
A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafted STAT command with a specific byte sequence.Enginsight
Awaiting analysis
This vulnerability is currently awaiting analysis.
Debian Releases
Ubuntu Releases
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| vsftpd |
| ||||
| vsftpd-debuginfo |
| ||||
| vsftpd-debugsource |
| ||||
| vsftpd-sysvinit |
|
References