What the vulnerability does

01Description

Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory.

Key dates

02Disclosure timeline

April 29, 2019 CVE published
August 4, 2024 Record updated