{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","type":"deb","namespace":"debian","name":"python-pyftpdlib","version":"0","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"0.5.2-1","latest_non_vulnerable_version":"2.2.0-1","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34718?format=json","vulnerability_id":"VCID-1zfr-1up6-4kfw","summary":"pyftpdlib before 0.1.1 does not choose a random value for the port associated with the PASV command, which makes it easier for remote attackers to obtain potentially sensitive information about the number of in-progress data connections by reading the response to this command.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6738","reference_id":"","reference_type":"","scores":[{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48548","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48576","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48595","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48587","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48561","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0025","scoring_system":"epss","scoring_elements":"0.48525","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6738"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/commit/d171bdc4ef7ac769671946a8a3e5eaafc39a9202","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/commit/d171bdc4ef7ac769671946a8a3e5eaafc39a9202"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-22.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-22.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6738","reference_id":"CVE-2007-6738","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6738"},{"reference_url":"https://github.com/advisories/GHSA-gh7c-cg3x-pmcr","reference_id":"GHSA-gh7c-cg3x-pmcr","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-gh7c-cg3x-pmcr"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6738","GHSA-gh7c-cg3x-pmcr","PYSEC-2010-22"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-1zfr-1up6-4kfw"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34708?format=json","vulnerability_id":"VCID-d7ub-v4hk-7ka2","summary":"The ftp_STOU function in FTPServer.py in pyftpdlib before 0.2.0 does not limit the number of attempts to discover a unique filename, which might allow remote authenticated users to cause a denial of service via a STOU command.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=25","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=25"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=37","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=37"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn37&r=37&format=side&path=/trunk/pyftpdlib/FTPServer.py","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn37&r=37&format=side&path=/trunk/pyftpdlib/FTPServer.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6740","reference_id":"","reference_type":"","scores":[{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66957","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66922","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66962","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66971","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66955","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00513","scoring_system":"epss","scoring_elements":"0.66939","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6740"},{"reference_url":"https://github.com/advisories/GHSA-cx59-cp6c-9fr8","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-cx59-cp6c-9fr8"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/25","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/25"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-24.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-24.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6740","reference_id":"CVE-2007-6740","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"7.1","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6740"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6740","GHSA-cx59-cp6c-9fr8","PYSEC-2010-24"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-d7ub-v4hk-7ka2"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34704?format=json","vulnerability_id":"VCID-evaz-9xru-dugy","summary":"ftpserver.py in pyftpdlib before 0.5.0 does not delay its response after receiving an invalid login attempt, which makes it easier for remote attackers to obtain access via a brute-force attack.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=73","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=73"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=348","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=348"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn348&r=348&format=side&path=/trunk/pyftpdlib/ftpserver.py","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn348&r=348&format=side&path=/trunk/pyftpdlib/ftpserver.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7263","reference_id":"","reference_type":"","scores":[{"value":"0.00647","scoring_system":"epss","scoring_elements":"0.71179","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00647","scoring_system":"epss","scoring_elements":"0.71162","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00647","scoring_system":"epss","scoring_elements":"0.71205","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00647","scoring_system":"epss","scoring_elements":"0.71211","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00647","scoring_system":"epss","scoring_elements":"0.71194","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7263"},{"reference_url":"https://github.com/advisories/GHSA-q6w2-jxcm-2crj","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-q6w2-jxcm-2crj"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/73","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/73"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-5.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-5.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7263","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7263"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2008-7263","GHSA-q6w2-jxcm-2crj","PYSEC-2010-5"],"risk_score":3.3,"exploitability":"0.5","weighted_severity":"6.6","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-evaz-9xru-dugy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34707?format=json","vulnerability_id":"VCID-gmj7-fyrc-3ybx","summary":"FTPServer.py in pyftpdlib before 0.2.0 does not increment the attempted_logins count for a USER command that specifies an invalid username, which makes it easier for remote attackers to obtain access via a brute-force attack.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=20","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=20"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=23","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=23"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn23&r=23&format=side&path=/trunk/pyftpdlib/FTPServer.py","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn23&r=23&format=side&path=/trunk/pyftpdlib/FTPServer.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6737","reference_id":"","reference_type":"","scores":[{"value":"0.00539","scoring_system":"epss","scoring_elements":"0.67976","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00539","scoring_system":"epss","scoring_elements":"0.67937","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00539","scoring_system":"epss","scoring_elements":"0.67984","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00539","scoring_system":"epss","scoring_elements":"0.67973","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00539","scoring_system":"epss","scoring_elements":"0.67961","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6737"},{"reference_url":"https://github.com/advisories/GHSA-9x66-ghqx-8g5r","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9x66-ghqx-8g5r"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/20","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/20"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-21.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-21.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6737","reference_id":"CVE-2007-6737","reference_type":"","scores":[{"value":"7.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L"},{"value":"6.9","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6737"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6737","GHSA-9x66-ghqx-8g5r","PYSEC-2010-21"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-gmj7-fyrc-3ybx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34705?format=json","vulnerability_id":"VCID-jc57-ywd2-nbfz","summary":"FTPServer.py in pyftpdlib before 0.2.0 allows remote attackers to cause a denial of service via a long command.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=3","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=3"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=20","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=20"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn20&r=20&format=side&path=/trunk/pyftpdlib/FTPServer.py","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn20&r=20&format=side&path=/trunk/pyftpdlib/FTPServer.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6739","reference_id":"","reference_type":"","scores":[{"value":"0.00603","scoring_system":"epss","scoring_elements":"0.69974","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00603","scoring_system":"epss","scoring_elements":"0.69934","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00603","scoring_system":"epss","scoring_elements":"0.69983","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00603","scoring_system":"epss","scoring_elements":"0.6997","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00603","scoring_system":"epss","scoring_elements":"0.69958","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00603","scoring_system":"epss","scoring_elements":"0.69981","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6739"},{"reference_url":"https://github.com/advisories/GHSA-5f3f-pg2c-cxcv","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5f3f-pg2c-cxcv"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/3","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/3"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-23.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-23.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6739","reference_id":"CVE-2007-6739","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"8.7","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6739"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6739","GHSA-5f3f-pg2c-cxcv","PYSEC-2010-23"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-jc57-ywd2-nbfz"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34716?format=json","vulnerability_id":"VCID-mbxx-6p21-fqas","summary":"The ftp_PORT function in FTPServer.py in pyftpdlib before 0.2.0 does not prevent TCP connections to privileged ports if the destination IP address matches the source IP address of the connection from the FTP client, which might allow remote authenticated users to conduct FTP bounce attacks via crafted FTP data, as demonstrated by an FTP bounce attack against a NAT server, a related issue to CVE-1999-0017.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=11","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=11"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=32","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=32"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn32&r=32&format=side&path=/trunk/pyftpdlib/FTPServer.py","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn32&r=32&format=side&path=/trunk/pyftpdlib/FTPServer.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6741","reference_id":"","reference_type":"","scores":[{"value":"0.00606","scoring_system":"epss","scoring_elements":"0.70089","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00606","scoring_system":"epss","scoring_elements":"0.70046","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00606","scoring_system":"epss","scoring_elements":"0.70087","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00606","scoring_system":"epss","scoring_elements":"0.70095","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00606","scoring_system":"epss","scoring_elements":"0.70078","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00606","scoring_system":"epss","scoring_elements":"0.70066","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6741"},{"reference_url":"https://github.com/advisories/GHSA-8xgx-75qw-6268","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8xgx-75qw-6268"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/11","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/11"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-25.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-25.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6741","reference_id":"CVE-2007-6741","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6741"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6741","GHSA-8xgx-75qw-6268","PYSEC-2010-25"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mbxx-6p21-fqas"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34709?format=json","vulnerability_id":"VCID-mndg-gta5-pycj","summary":"Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.2.0 allow remote authenticated users to access arbitrary files and directories via a .. (dot dot) in a (1) LIST, (2) STOR, or (3) RETR command.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=9","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=9"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=16","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=16"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn16&r=16&format=side&path=/trunk/pyftpdlib/FTPServer.py","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn16&r=16&format=side&path=/trunk/pyftpdlib/FTPServer.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6736","reference_id":"","reference_type":"","scores":[{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56812","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.5676","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56819","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56807","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56792","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00337","scoring_system":"epss","scoring_elements":"0.56811","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2007-6736"},{"reference_url":"https://github.com/advisories/GHSA-f8wg-36r9-7f4q","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f8wg-36r9-7f4q"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/9","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/9"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-20.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-20.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6736","reference_id":"CVE-2007-6736","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6736"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2007-6736","GHSA-f8wg-36r9-7f4q","PYSEC-2010-20"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-mndg-gta5-pycj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34714?format=json","vulnerability_id":"VCID-nacu-ynvc-3fgh","summary":"The ftp_QUIT function in ftpserver.py in pyftpdlib before 0.5.0 allows remote authenticated users to cause a denial of service (file descriptor exhaustion and daemon outage) by sending a QUIT command during a disallowed data-transfer attempt.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=71","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=71"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=344","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=344"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn344&r=344&format=side&path=/trunk/pyftpdlib/ftpserver.py","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn344&r=344&format=side&path=/trunk/pyftpdlib/ftpserver.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7264","reference_id":"","reference_type":"","scores":[{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74614","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.7458","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74611","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74616","published_at":"2026-06-06T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74605","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0081","scoring_system":"epss","scoring_elements":"0.74588","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7264"},{"reference_url":"https://github.com/advisories/GHSA-8p2c-fghc-9hj4","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8p2c-fghc-9hj4"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/71","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/71"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-6.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-6.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7264","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7264"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2008-7264","GHSA-8p2c-fghc-9hj4","PYSEC-2010-6"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nacu-ynvc-3fgh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34713?format=json","vulnerability_id":"VCID-pb6d-3seq-b3g7","summary":"Multiple directory traversal vulnerabilities in FTPServer.py in pyftpdlib before 0.3.0 allow remote authenticated users to access arbitrary files and directories via vectors involving a symlink in a pathname to a (1) CWD, (2) DELE, (3) STOR, or (4) RETR command.","references":[{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=55","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=55"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7262","reference_id":"","reference_type":"","scores":[{"value":"0.0055","scoring_system":"epss","scoring_elements":"0.68339","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0055","scoring_system":"epss","scoring_elements":"0.68382","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0055","scoring_system":"epss","scoring_elements":"0.68383","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0055","scoring_system":"epss","scoring_elements":"0.68367","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0055","scoring_system":"epss","scoring_elements":"0.6839","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2008-7262"},{"reference_url":"https://github.com/advisories/GHSA-jw88-wxv5-7c4f","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-jw88-wxv5-7c4f"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/giampaolo/pyftpdlib/issues/55","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib/issues/55"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-4.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-4.yaml"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7262","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L"},{"value":"5.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2008-7262"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2008-7262","GHSA-jw88-wxv5-7c4f","PYSEC-2010-4"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-pb6d-3seq-b3g7"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/34706?format=json","vulnerability_id":"VCID-yxhx-e7ds-mqe8","summary":"Race condition in the FTPHandler class in ftpserver.py in pyftpdlib before 0.5.1 allows remote attackers to cause a denial of service (daemon outage) by establishing and then immediately closing a TCP connection, leading to the accept function having an unexpected return value of None, a different vulnerability than CVE-2010-3494.","references":[{"reference_url":"http://bugs.python.org/issue6706","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://bugs.python.org/issue6706"},{"reference_url":"http://code.google.com/p/pyftpdlib/issues/detail?id=91","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/issues/detail?id=91"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/browse/trunk/HISTORY"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/detail?r=439","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/detail?r=439"},{"reference_url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn439&r=439&format=side&path=/trunk/pyftpdlib/ftpserver.py","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://code.google.com/p/pyftpdlib/source/diff?spec=svn439&r=439&format=side&path=/trunk/pyftpdlib/ftpserver.py"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5010","reference_id":"","reference_type":"","scores":[{"value":"0.01038","scoring_system":"epss","scoring_elements":"0.77783","published_at":"2026-06-09T12:55:00Z"},{"value":"0.01038","scoring_system":"epss","scoring_elements":"0.7775","published_at":"2026-06-04T12:55:00Z"},{"value":"0.01038","scoring_system":"epss","scoring_elements":"0.77777","published_at":"2026-06-05T12:55:00Z"},{"value":"0.01038","scoring_system":"epss","scoring_elements":"0.77784","published_at":"2026-06-06T12:55:00Z"},{"value":"0.01038","scoring_system":"epss","scoring_elements":"0.77775","published_at":"2026-06-07T12:55:00Z"},{"value":"0.01038","scoring_system":"epss","scoring_elements":"0.77765","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2009-5010"},{"reference_url":"https://bugs.launchpad.net/zodb/+bug/135108","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://bugs.launchpad.net/zodb/+bug/135108"},{"reference_url":"https://github.com/advisories/GHSA-mpg6-rgp4-35rr","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-mpg6-rgp4-35rr"},{"reference_url":"https://github.com/giampaolo/pyftpdlib","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/giampaolo/pyftpdlib"},{"reference_url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-7.yaml","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/pypa/advisory-database/tree/main/vulns/pyftpdlib/PYSEC-2010-7.yaml"},{"reference_url":"http://www.openwall.com/lists/oss-security/2010/09/09/6","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2010/09/09/6"},{"reference_url":"http://www.openwall.com/lists/oss-security/2010/09/11/2","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2010/09/11/2"},{"reference_url":"http://www.openwall.com/lists/oss-security/2010/09/22/3","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2010/09/22/3"},{"reference_url":"http://www.openwall.com/lists/oss-security/2010/09/24/3","reference_id":"","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"http://www.openwall.com/lists/oss-security/2010/09/24/3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2009-5010","reference_id":"CVE-2009-5010","reference_type":"","scores":[{"value":"6.3","scoring_system":"cvssv4","scoring_elements":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2009-5010"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/125261?format=json","purl":"pkg:deb/debian/python-pyftpdlib@0?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125262?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.4-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.4-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125260?format=json","purl":"pkg:deb/debian/python-pyftpdlib@1.5.7-3?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@1.5.7-3%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125266?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.0.1-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.0.1-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125263?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.1.0-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.1.0-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/125265?format=json","purl":"pkg:deb/debian/python-pyftpdlib@2.2.0-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@2.2.0-1%3Fdistro=trixie"}],"aliases":["CVE-2009-5010","GHSA-mpg6-rgp4-35rr","PYSEC-2010-7"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-yxhx-e7ds-mqe8"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/python-pyftpdlib@0%3Fdistro=trixie"}