CVE-2015-10003

MEDIUM

FileZilla Server <0.9.50 - Info Disclosure

Title source: llm

Description

A vulnerability, which was classified as problematic, was found in FileZilla Server up to 0.9.50. This affects an unknown part of the component PORT Handler. The manipulation leads to unintended intermediary. It is possible to initiate the attack remotely. Upgrading to version 0.9.51 is able to address this issue. It is recommended to upgrade the affected component.

References (2)

[Patch, Technical Description, Third Party Advisory] http://www.securitygalore.com/site3/filezilla_ftp_server_advisory

[Third Party Advisory] https://vuldb.com/?id.97203

Scores

CVSS v3 4.3

EPSS 0.0020

EPSS Percentile 41.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-441 CWE-610

Status published

Products (1)

filezilla-project/filezilla_server < 0.9.51

Published Jul 17, 2022

Tracked Since Feb 18, 2026