VulnerableCode Package Details - pkg:deb/debian/vsftpd@3.0.3-13

Search for packages

Package details: pkg:deb/debian/vsftpd@3.0.3-13

Essentials
History (1)

purl	pkg:deb/debian/vsftpd@3.0.3-13

Next non-vulnerable version	None.
Latest non-vulnerable version	None.
Risk	3.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-naz4-k1th-aaad Aliases: CVE-2021-3618	ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise the other at the application layer.	3.0.5-0.1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-04-07T10:16:21.039388+00:00	Debian Importer	Affected by	VCID-naz4-k1th-aaad	https://security-tracker.debian.org/tracker/data/json	36.0.0