CVE-2020-37069

Published: Feb 3, 2026Modified: Feb 25, 2026

8.7

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Show more

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: disclosure@vulncheck.com (Secondary)

Description

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the NLST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

Affected (1)

Products: Konicaminolta: Ftp Utility

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Konicaminolta Ftp Utility	Version 1.0

Related CWEs

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (4)

https://konica-minolta-ftp-utility.software.informer.com/download/

Source: disclosure@vulncheck.com

Permissions Required

https://www.exploit-db.com/exploits/48502

Source: disclosure@vulncheck.com

ExploitThird Party AdvisoryVDB Entry

https://www.konicaminolta.us/

Source: disclosure@vulncheck.com

Product

https://www.vulncheck.com/advisories/konica-minolta-ftp-utility-nlst-denial-of-service

Source: disclosure@vulncheck.com

Third Party Advisory

Timeline

No history available yet.