Cyber Resilience

CVE-2020-37068

HighPublic PoC

Published: 03 February 2026

Published
03 February 2026
Modified
25 February 2026
KEV Added
Patch
CVSS Score v4 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0057 43.0th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2020-37068 is a high-severity Classic Buffer Overflow (CWE-120) vulnerability in Konicaminolta Ftp Utility. Its CVSS base score is 8.7 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 43.0th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Deeper analysis

CVE-2020-37068 is a buffer overflow vulnerability (CWE-120) affecting Konica Minolta FTP Utility version 1.0, specifically in the handling of the LIST command. The flaw enables attackers to overwrite system registers by sending an oversized buffer, such as 1500 'A' characters, which disrupts normal operation of the FTP server component.

Remote attackers can exploit this vulnerability over the network with low attack complexity, requiring no privileges, user interaction, or special conditions, as reflected in its CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Exploitation typically crashes the FTP server, resulting in a denial of service, and may allow potential execution of unauthorized code through register manipulation.

References include a Vulncheck advisory detailing the denial-of-service impact via the LIST command, an Exploit-DB entry (ID 48501) with a proof-of-concept exploit, the Konica Minolta US website, and a software download page for the utility. No patches or specific mitigations are described in the provided reference details.

EU & UK References

Vulnerability details

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized…

more

code.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1210 Exploitation of Remote Services Lateral Movement
Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.
T1499.004 Application or System Exploitation Impact
Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.
Why these techniques?

Buffer overflow in FTP server component enables remote unauthenticated exploitation for initial access (T1190, T1210) and DoS via application crash (T1499.004), with potential RCE.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2020-37069Same product: Konicaminolta Ftp Utility
CVE-2025-25343Shared CWE-120
CVE-2026-42859Shared CWE-120
CVE-2025-29363Shared CWE-120
CVE-2025-50672Shared CWE-120
CVE-2024-50697Shared CWE-120
CVE-2026-7287Shared CWE-120
CVE-2025-50667Shared CWE-120
CVE-2025-29359Shared CWE-120
CVE-2024-53379Shared CWE-120

Affected Assets

konicaminolta
ftp utility
1.0

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires validation of all inputs, directly preventing buffer overflows from oversized LIST command buffers in the FTP utility.

prevent

Implements memory protections such as stack guards and non-executable memory to mitigate register overwrites and potential code execution from the buffer overflow.

prevent

Mandates timely remediation of flaws like this buffer overflow vulnerability through patching or removal of the affected FTP utility.

References