This page lists publicly disclosed CVE vulnerabilities affecting acftp acftp (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2006-6775 | acFTP 1.5 allows remote authenticated users to cause a denial of service via a crafted argument to the (1) REST or (2) PBSZ command. | [email protected] | 3.5 | 5.07% | 2006-12-27 | 2026-04-23 |
| CVE-2006-2242 | acFTP 1.4 allows remote attackers to cause a denial of service (application crash) via a long string with "{" (brace) characters to the USER command. | [email protected] | 5.0 | 40.24% | 2006-05-09 | 2026-04-16 |
| CVE-2002-2417 | acFTP 1.4 does not properly handle when an invalid password is provided by the user during authentication, which allows remote attackers to hide or misrepresent certain activity from log files and possibly gain privileges. | [email protected] | 10.0 | 5.72% | 2002-12-31 | 2026-04-16 |