CVE-2022-41985
8.6HIGHAn authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted set of network packets can lead to authentication bypass and
Published: 5/10/2023Updated: 11/21/2024
Description
An authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted set of network packets can lead to authentication bypass and denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.
AI AnalysisPowered by AI
Affected Products
weston-embeddeduc-ftps
1.98.00
References
- https://github.com/weston-embedded/uC-FTPs/pull/1Patch
- https://talosintelligence.com/vulnerability_reports/TALOS-2022-1680ExploitThird Party Advisory
- https://github.com/weston-embedded/uC-FTPs/pull/1Patch
- https://talosintelligence.com/vulnerability_reports/TALOS-2022-1680ExploitThird Party Advisory
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2022-1680