What is CVE-2015-1419?

CVE-2015-1419 is a vulnerability in Vsftpd_project Vsftpd. Published 2015-01-28.

Is CVE-2015-1419 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Vsftpd_project Vsftpd

CVE-2015-1419

Unspecified vulnerability in vsftpd 3.0.2 and earlier allows remote attackers to bypass access restrictions via unknown vectors, related to deny_file parsing.

EPSS: 0.761 (98.9th percentile) — read the EPSS interpretation.

Affected products

Vsftpd_project Vsftpd
Opensuse — versions 13.1, 13.2
N/a — versions n/a

Public proof-of-concept exploits

hadimalik12/vulnerability-scanner

References

SUSE-SU-2015:0136 (vendor-advisory, Patch, x_refsource_SUSE, Vendor Advisory)
openSUSE-SU-2015:0079 (vendor-advisory, x_refsource_SUSE, Vendor Advisory)
62415 (x_refsource_SECUNIA, Broken Link, third-party-advisory)

Frequently asked questions

What is CVE-2015-1419?: CVE-2015-1419 is a vulnerability in Vsftpd_project Vsftpd. Published 2015-01-28.
Is CVE-2015-1419 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.