CVE-2025-5331

A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. This vulnerability affects unknown code of the component NLST Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:pcman_ftp_server_project:pcman_ftp_server:2.0.7:*:*:*:*:*:*:*

History

23 Jun 2025, 14:35

Type Values Removed Values Added
First Time Pcman Ftp Server Project
Pcman Ftp Server Project pcman Ftp Server
References () https://github.com/r3ng4f/PCMan_1/blob/main/exploit02.txt - () https://github.com/r3ng4f/PCMan_1/blob/main/exploit02.txt - Exploit
References () https://vuldb.com/?ctiid.310504 - () https://vuldb.com/?ctiid.310504 - Permissions Required, VDB Entry
References () https://vuldb.com/?id.310504 - () https://vuldb.com/?id.310504 - Third Party Advisory, VDB Entry
References () https://vuldb.com/?submit.585404 - () https://vuldb.com/?submit.585404 - Third Party Advisory, VDB Entry
CPE cpe:2.3:a:pcman_ftp_server_project:pcman_ftp_server:2.0.7:*:*:*:*:*:*:*

30 May 2025, 14:15

Type Values Removed Values Added
Summary
  • (es) Se ha detectado una vulnerabilidad en PCMan FTP Server 2.0.7, clasificada como crítica. Esta vulnerabilidad afecta al código desconocido del componente NLST Command Handler. La manipulación provoca un desbordamiento del búfer. El ataque puede ejecutarse en remoto. Se ha hecho público el exploit y puede que sea utilizado.
References () https://github.com/r3ng4f/PCMan_1/blob/main/exploit02.txt - () https://github.com/r3ng4f/PCMan_1/blob/main/exploit02.txt -

29 May 2025, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-29 22:15

Updated : 2025-06-23 14:35


NVD link : CVE-2025-5331

Mitre link : CVE-2025-5331

CVE.ORG link : CVE-2025-5331


JSON object : View

Products Affected

pcman_ftp_server_project

  • pcman_ftp_server
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')