CVE-2020-37068 HIGH

CVE-2020-37068: Konica Minolta FTP Utility 1.0 - 'LIST' Denial of Service

Vendor Konica Minolta
Product FTP Utility
Weakness CWE-120
Published February 3, 2026
Last update February 4, 2026

CVSS base score

8.7/10
Attack vector Network
Attack complexity Low
Privileges required None
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized code.

Key dates

02Disclosure timeline

February 3, 2026 CVE published
February 4, 2026 Record updated