CVE-2022-50799

HIGH

Fetch FTP Client <5.8.2 - DoS

Title source: llm

Description

Fetch FTP Client 5.8.2 contains a denial of service vulnerability that allows attackers to trigger 100% CPU consumption by sending long server responses. Attackers can send specially crafted FTP server responses exceeding 2K bytes to cause excessive resource utilization and potentially crash the application.

Exploits (1)

exploitdb WORKING POC

by LiquidWorm · pythonlocalmacos

https://www.exploit-db.com/exploits/50696

View Code ZIP pw:eip

References (4)

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/50696

[Various Sources] https://www.fetchsoftworks.com

[Third Party Advisory] https://www.vulncheck.com/advisories/fetch-softworks-fetch-ftp-client-remote-cpu-consumption-denial-of-service

[Third Party Advisory] https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5696.php

Scores

CVSS v3 7.5

EPSS 0.0006

EPSS Percentile 19.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Classification

CWE

CWE-770

Status draft

Timeline

Published Dec 30, 2025

Tracked Since Feb 18, 2026