CVE-2025-4847

A vulnerability has been found in FreeFloat FTP Server 1.0 and classified as critical. This vulnerability affects unknown code of the component MLS Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Published: May 18, 2025
Updated: Jun 5, 2025
CVE: CVE-2025-4847
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-119
CWE-120

Affected Software
References

Software	From	Fixed in
freefloat / ftp_server	1.0	1.0.x

https://fitoxs.com/exploit/exploit-6f163f955398f8c30e5a268549120ae07caea315e65a6af636072064b431c94f.txt
https://vuldb.com/?ctiid.309316
https://vuldb.com/?id.309316
https://vuldb.com/?submit.572487

Vulnerability Database

CVE-2025-4847