CVE-2020-37107
Published: 07 February 2026
Summary
CVE-2020-37107 is a medium-severity Classic Buffer Overflow (CWE-120) vulnerability in Coreftp (inferred from references). Its CVSS base score is 6.7 (Medium).
Operationally, exploitation aligns with the MITRE ATT&CK technique Application or System Exploitation (T1499.004); ranked at the 8.2th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).
Deeper analysis
CVE-2020-37107 is a denial-of-service vulnerability in Core FTP LE version 2.2. The issue stems from a buffer overflow (CWE-120), where attackers can crash the application by overwriting the account field with a large buffer, such as pasting content from a text file containing 20,000 repeated characters into the field.
The vulnerability carries a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating it is exploitable remotely over the network with low complexity, no required privileges or user interaction. Attackers can achieve a high-impact denial of service, causing the application to become unresponsive and requiring reinstallation to recover.
Advisories and references include the vendor site at coreftp.com and its download page, a proof-of-concept exploit on Exploit-DB (ID 48137), and a VulnCheck advisory detailing the Core FTP LE denial-of-service vulnerability. No specific patch details are outlined in the provided information.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2020-31101
Vulnerability details
Core FTP LE 2.2 contains a denial of service vulnerability that allows attackers to crash the application by overwriting the account field with a large buffer. Attackers can create a text file with 20,000 repeated characters and paste it into…
more
the account field to cause the application to become unresponsive and require reinstallation.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Buffer overflow enables remote application crash for DoS via exploitation (T1499.004).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly enforces validation of account-field input size/format to block the oversized buffer that triggers the CWE-120 overflow.
Applies memory-protection mechanisms (e.g., ASLR, DEP, bounds checking) that can stop or contain the buffer overflow before it crashes the Core FTP process.
Limits the impact of the resulting denial-of-service condition on system availability when the vulnerable client is exploited remotely.