CVE-2020-9365 — Vulnetix

Try Vulnetix Request Demo

CVE-2020-9365 PUBLISHED

An issue was discovered in Pure-FTPd 1.0.49. An out-of-bounds (OOB) read has been detected in the pure_strcmp function in utils.c.

EPSS 32.46% · 96.8th percentile

Risk Scores

EPSS Score

32.46%

96.8th percentile

Affected Products

Vendor	Product	Versions
Ubuntu:16.04:LTS	pure-ftpd	0, 1.0.36-3.2, 1.0.36-3.2build1
Ubuntu:18.04:LTS	pure-ftpd	0, 1.0.46-1, 1.0.46-1build1

Timeline

Feb 24, 2020 CVE Published
Apr 14, 2021 EPSS Score
Feb 4, 2022 EPSS Score
Mar 7, 2023 EPSS Score
Nov 21, 2024 CVE Updated
Mar 18, 2025 EPSS Score
Mar 22, 2025 EPSS Score
Mar 30, 2025 EPSS Score
Apr 7, 2025 EPSS Score
Apr 10, 2025 EPSS Score
Apr 11, 2025 EPSS Score
Apr 17, 2025 EPSS Score

References

https://ubuntu.com/security/CVE-2020-9365 third-party-advisory
https://github.com/jedisct1/pure-ftpd/commit/36c6d268cb190282a2c17106acfd31863121b third-party-advisory
https://github.com/jedisct1/pure-ftpd/commit/36c6d268cb190282a2c17106acfd31863121b58e third-party-advisory
https://www.cve.org/CVERecord?id=CVE-2020-9365 third-party-advisory

Open in Interactive Console →