CVE-2025-4871: PCMan FTP Server REST Command buffer overflow
First published: Sun May 18 2025(Updated: )
A vulnerability, which was classified as critical, has been found in PCMan FTP Server 2.0.7. This issue affects some unknown processing of the component REST Command Handler. The manipulation leads to buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PCMan FTP Server |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-4871?
CVE-2025-4871 is classified as a critical vulnerability.
What components are affected by CVE-2025-4871?
CVE-2025-4871 affects the REST Command Handler component of PCMan FTP Server 2.0.7.
How does the CVE-2025-4871 vulnerability impact systems?
CVE-2025-4871 allows for buffer overflow which can be exploited remotely.
Can CVE-2025-4871 be exploited by unauthorized users?
Yes, CVE-2025-4871 can be exploited remotely, potentially by unauthorized users.
What steps should be taken to mitigate CVE-2025-4871?
To mitigate CVE-2025-4871, it is recommended to update to the latest version of PCMan FTP Server.
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/references
- agent/type
- agent/first-publish-date
- agent/description
- agent/guess-ai
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/severity
- agent/author
- agent/event
- collector/epss-latest
- source/FIRST
- agent/source
- agent/tags
- agent/epss
- vendor/pcman
- canonical/pcman ftp server