CVE-2020-37069

CRITICAL

Konica Minolta FTP Utility 1.0 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-37069. PoCs published by Socket_0x03.

AI-analyzed exploit summary This PoC exploits a buffer overflow vulnerability in the NLST command of Konica Minolta FTP Utility 1.0, causing a denial of service by sending an oversized buffer. The exploit demonstrates register overwrites but does not include a full RCE payload.

Description

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the NLST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

Exploits (1)

exploitdb WORKING POC
by Socket_0x03 · pythondoswindows
https://www.exploit-db.com/exploits/48502

This PoC exploits a buffer overflow vulnerability in the NLST command of Konica Minolta FTP Utility 1.0, causing a denial of service by sending an oversized buffer. The exploit demonstrates register overwrites but does not include a full RCE payload.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Konica Minolta FTP Utility 1.0
Auth required
Prerequisites: Network access to the FTP server · Valid FTP credentials
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Exploit, Third Party Advisory exploit
https://www.exploit-db.com/exploits/48502
Various Sources product
https://www.konicaminolta.us/

Scores

CVSS v3 9.8
EPSS 0.0057
EPSS Percentile 42.9%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable yes
Technical Impact total

Details

CWE
CWE-120
Status published
Products (1)
konicaminolta/ftp_utility 1.0
Published Feb 03, 2026
Tracked Since Feb 18, 2026