CVE-2025-5049 – FreeFloat FTP Server Buffer Overflow Vulnerability

May 21, 2025

CVE ID : CVE-2025-5049

Published : May 21, 2025, 7:16 p.m. | 1 hour, 25 minutes ago

Description : A vulnerability was found in FreeFloat FTP Server 1.0. It has been declared as critical. This vulnerability affects unknown code of the component APPEND Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5050 – FreeFloat FTP Server BELL Command Handler Buffer Overflow Vulnerability

Next Article CVE-2025-45752 – SeedDMS PHP Code Execution Vulnerability

Highlights

CVE-2025-48946 – Liboqs HQC Algorithmic Design Flaw Vulnerability

May 30, 2025

CVE ID : CVE-2025-48946

Published : May 30, 2025, 8:15 p.m. | 1 hour, 25 minutes ago

Description : liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. liboqs prior to version 0.13.0 supports the HQC algorithm, an algorithm with a theoretical design flaw which leads to large numbers of malformed ciphertexts sharing the same implicit rejection value. Currently, no concrete attack on the algorithm is known. However, prospective users of HQC must take extra care when using the algorithm in protocols involving key derivation. In particular, HQC does not provide the same security guarantees as Kyber or ML-KEM. There is currently no patch for the HQC flaw available in liboqs, so HQC is disabled by default in liboqs starting from version 0.13.0. OQS will update its implementation after the HQC team releases an updated algorithm specification.

Severity: 3.7 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

A Week In The Life Of An AI-Augmented Designer

This week in AI updates: Gemini Code Assist Agent Mode, GitHub’s Agents panel, and more (August 22, 2025)

Microsoft adds Copilot-powered debugging features for .NET in Visual Studio

Blackstone portfolio company R Systems Acquires Novigo Solutions, Strengthening its Product Engineering and Full-Stack Agentic-AI Capabilities

I found the ultimate MacBook Air alternative for Windows users – and it’s priced well

Outdated IT help desks are holding businesses back – but there is a solution

Android’s latest update can force apps into dark mode – how to see it now

I tried the Google Pixel Watch 4 – and these key features made it feel indispensable

Building Cross-Platform Alerts with Laravel’s Notification Framework

Building Cross-Platform Alerts with Laravel’s Notification Framework

Add Notes Functionality to Eloquent Models With the Notable Package

How to install OpenPlatform — IoT platform

Basics of Digital Forensics

Basics of Digital Forensics

Top Linux Server Automation Tools: Simplifying System Administration

Rising from the Ashes: How AlmaLinux and Rocky Linux Redefined the Post-CentOS Landscape

CVE-2025-5049 – FreeFloat FTP Server Buffer Overflow Vulnerability

“What happens online stays online” and other cyberbullying myths, debunked

The need for speed: Why organizations are turning to rapid, trustworthy MDR

CVE-2025-3931 – Yggdrasil DBus Unauthenticated Command Injection Vulnerability

My favorite keychain accessory turns the AirTag into an even more useful tracker

Microsoft celebrates 50th anniversary with a new Xbox Dynamic Background and more

Node.js vs Java: 8 Commercial Benefits for Enterprise-Scale Hiring (2025)

CVE-2025-48946 – Liboqs HQC Algorithmic Design Flaw Vulnerability

Microsoft Teams Up With U.S. Lab to Use AI for Faster Nuclear Permits

CVE-2012-10029 – Nagios XI Command Injection Vulnerability

CVE-2025-47884 – Jenkins OpenID Connect Provider Plugin Authentication Bypass

CVE-2025-5049 – FreeFloat FTP Server Buffer Overflow Vulnerability

Related Posts