CVE-2025-3380: PCMan FTP Server FEAT Command buffer overflow
First published: Mon Apr 07 2025(Updated: )
A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7. Affected by this issue is some unknown functionality of the component FEAT Command Handler. The manipulation leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PCMan FTP Server | ||
| PCMan FTP Server | =2.0.7 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-3380?
CVE-2025-3380 is classified as a critical vulnerability.
How does CVE-2025-3380 affect PCMan FTP Server?
CVE-2025-3380 affects the FEAT Command Handler component of PCMan FTP Server by allowing a buffer overflow.
Can CVE-2025-3380 be exploited remotely?
Yes, the exploit for CVE-2025-3380 can be launched remotely.
What are the potential consequences of exploiting CVE-2025-3380?
Exploiting CVE-2025-3380 could allow an attacker to execute arbitrary code or crash the application.
How can I mitigate the risk of CVE-2025-3380 in my environment?
To mitigate the risk of CVE-2025-3380, it is recommended to update to a patched version of PCMan FTP Server as soon as available.
- agent/weakness
- agent/title
- agent/description
- agent/type
- agent/references
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/author
- agent/severity
- agent/source
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- agent/event
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/nvd-api
- source/NVD
- vendor/pcman
- canonical/pcman ftp server
- version/pcman ftp server/2.0.7