What is CVE-2019-12815?

CVE-2019-12815 is a vulnerability in N/a. Published 2019-07-19.

Is CVE-2019-12815 known to be exploited?

35 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2019-12815

An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306.

EPSS: 0.785 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

tbspace.de/cve201912815proftpd.html (x_refsource_MISC)
bugs.proftpd.org/show_bug.cgi (x_refsource_MISC)
github.com/proftpd/proftpd/pull/816 (x_refsource_MISC)
109339 (vdb-entry, x_refsource_BID)
FEDORA-2019-82b0f48691 (vendor-advisory, x_refsource_FEDORA)
FEDORA-2019-e9187610c3 (vendor-advisory, x_refsource_FEDORA)
20190805 [SECURITY] [DSA 4491-1] proftpd-dfsg security update (mailing-list, x_refsource_BUGTRAQ)
DSA-4491 (vendor-advisory, x_refsource_DEBIAN)
[debian-lts-announce] 20190807 [SECURITY] [DLA 1873-1] proftpd-dfsg security update (mailing-list, x_refsource_MLIST)
openSUSE-SU-2019:1836 (vendor-advisory, x_refsource_SUSE)

Frequently asked questions

What is CVE-2019-12815?: CVE-2019-12815 is a vulnerability in N/a. Published 2019-07-19.
Is CVE-2019-12815 known to be exploited?: 35 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.