CVE-2024-0546
Published: 15 January 2024
Summary
CVE-2024-0546 is a medium-severity Improper Resource Shutdown or Release (CWE-404) vulnerability in Easyftp Easyftp. Its CVSS base score is 5.3 (Medium).
Operationally, ranked in the top 2.8% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
Deeper analysis
A vulnerability has been identified in EasyFTP version 1.7.0 within the LIST Command Handler component. The issue, tracked as CVE-2024-0546 and assigned CWE-404, arises from improper handling that permits remote manipulation to trigger a denial of service condition. It carries a CVSS 3.1 base score of 5.3 reflecting network attack vector, low complexity, and impact limited to availability.
Remote unauthenticated attackers can initiate the attack over the network by sending crafted input to the LIST command handler, resulting in service disruption. Public exploit code has been disclosed and is available for use.
The associated EPSS score stands at 0.3656 with no material increase from its peak value. References point to public exploit archives and vulnerability databases but contain no details on vendor patches or specific mitigation steps.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-16339
Vulnerability details
A vulnerability, which was classified as problematic, has been found in EasyFTP 1.7.0. This issue affects some unknown processing of the component LIST Command Handler. The manipulation leads to denial of service. The attack may be initiated remotely. The exploit…
more
has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-250715.
- CWE(s)
Related Threats
No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Contingency plan updates incorporate proper resource shutdown and release steps, preventing attackers from leveraging incomplete cleanup during recovery scenarios.
Mandates explicit shutdown of the network connection at session conclusion, directly addressing improper resource release.
Requires proper shutdown/release procedures that include overwriting or isolating data to block unintended transfer via reused system objects.
Procedures can mandate orderly shutdown or release of resources when failures occur, preventing improper resource handling after a fault.