Atftp Project: >> Atftp >> 0.7.2 Security Vulnerabilities
options.c in atftp before 0.7.5 reads past the end of an array, and consequently discloses server-side /etc/group data to a remote client.
CVSS Score
5.3
EPSS Score
0.001
Published
2022-02-04
tftpd_file.c in atftp through 0.7.4 has a buffer overflow because buffer-size handling does not properly consider the combination of data, OACK, and other options.
CVSS Score
7.5
EPSS Score
0.005
Published
2021-09-13