CVE-2025-3680: PCMan FTP Server LANG Command buffer overflow
First published: Wed Apr 16 2025(Updated: )
A vulnerability has been found in PCMan FTP Server 2.0.7 and classified as critical. Affected by this vulnerability is an unknown functionality of the component LANG Command Handler. The manipulation leads to buffer overflow. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PCMan FTP Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-3680?
CVE-2025-3680 has been classified as a critical vulnerability.
What type of vulnerability is CVE-2025-3680?
CVE-2025-3680 is identified as a buffer overflow vulnerability in the PCMan FTP Server.
Can the CVE-2025-3680 vulnerability be exploited remotely?
Yes, the CVE-2025-3680 vulnerability can be exploited remotely.
What component is affected by CVE-2025-3680?
The LANG Command Handler component is affected by CVE-2025-3680.
How do I fix CVE-2025-3680?
To mitigate CVE-2025-3680, it's recommended to update PCMan FTP Server to the latest version that addresses this vulnerability.
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/title
- agent/references
- agent/first-publish-date
- agent/type
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/severity
- agent/author
- agent/event
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/pcman
- canonical/pcman ftp server