CVE-2020-37068

CRITICAL

Konica Minolta FTP Utility 1.0 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-37068. PoCs published by Socket_0x03.

AI-analyzed exploit summary This PoC demonstrates a buffer overflow vulnerability in Konica Minolta FTP Utility 1.0 via the LIST command, leading to a denial of service (DoS) by overwriting registers. The exploit sends a large buffer to crash the FTP server, though it does not include a full RCE payload.

Description

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

Exploits (1)

exploitdb WORKING POC
by Socket_0x03 · textdoswindows
https://www.exploit-db.com/exploits/48501

This PoC demonstrates a buffer overflow vulnerability in Konica Minolta FTP Utility 1.0 via the LIST command, leading to a denial of service (DoS) by overwriting registers. The exploit sends a large buffer to crash the FTP server, though it does not include a full RCE payload.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Konica Minolta FTP Utility 1.0
Auth required
Prerequisites: Network access to the FTP server · Valid FTP credentials
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/48501
Various Sources product
https://www.konicaminolta.us/

Scores

CVSS v3 9.8
EPSS 0.0057
EPSS Percentile 42.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-120
Status published
Products (1)
konicaminolta/ftp_utility 1.0
Published Feb 03, 2026
Tracked Since Feb 18, 2026