MEDIUM🇵🇱 Wersja polska

CVE-2021-47791

CVSS 4.6v4.0pub. 2026-01-16upd. 2026-01-30

SmartFTP Client 10.0.2909.0 contains multiple denial of service vulnerabilities that allow attackers to crash the application through specific input manipulation. Attackers can trigger crashes by entering malformed paths, using invalid IP addresses, or clearing connection history in the client's interface.

CVSS Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
  • Smartftp

    APP
    Smartftp
    10.0.2909.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2010-4871HIGH10.0ten sam produkt

Unspecified vulnerability in SmartFTP before 4.0 Build 1142 allows attackers to have an unknown impact via a l...

CVE-2010-3099HIGH9.3ten sam produkt

Directory traversal vulnerability in SmartSoft Ltd SmartFTP Client 4.0.1124.0, and possibly other versions bef...

CVE-2007-0790HIGH7.5ten sam produkt

Heap-based buffer overflow in SmartFTP 2.0.1002 allows remote FTP servers to execute arbitrary code via a larg...

CVE-2003-1319HIGH7.6ten sam produkt

Multiple buffer overflows in SmartFTP 1.0.973, and other versions before 1.0.976, allow remote attackers to ex...

CVE-2018-25234MEDIUM6.9ten sam produkt

SmartFTP Client 9.0.2615.0 contains a denial of service vulnerability that allows local attackers to crash the...