Wiz
Vulnerability DatabaseCVE-2020-9272

CVE-2020-9272
ProFTPd vulnerability analysis and mitigation

Overview

CVE-2020-9272 is an out-of-bounds (OOB) read vulnerability discovered in ProFTPD version 1.3.7, specifically affecting the mod_cap module through the cap_text.c cap_to_text function. The vulnerability was discovered and reported by GitHub Security Lab team member Antonio Morales, and was publicly disclosed after a fix was developed (GitHub Issue).

Technical details

The vulnerability occurs in the cap_to_text() function within cap_text.c when it calls getstateflags(caps, n). When getstateflags(cap_t caps, int capno) is called with capno equal to 37, isset_cap((__cap_s *)(&caps->set.inheritable),capno) expands to &((__cap_s *)(&caps->set.inheritable))->_blk[(37)>>5], accessing caps->set.inheritable[1] which is outside of the caps struct bounds (GitHub Issue).

Impact

The out-of-bounds read vulnerability results in accessing memory locations outside the boundaries of the caps struct variable. The vulnerability only affects the 'inheritable' member of the struct, not affecting 'set.effective' or 'set.permited' members (GitHub Issue).

Mitigation and workarounds

The vulnerability has been fixed in ProFTPD version 1.3.6c. Users are advised to upgrade to this version or later. For Gentoo Linux users, the recommended mitigation is to upgrade using the command: emerge --sync && emerge --ask --oneshot --verbose ">=net-ftp/proftpd-1.3.6c" (Gentoo Security).

Additional resources

SourceThis report was generated using AI

Related ProFTPd vulnerabilities:

CVE ID

Severity

Score

Technologies

Component name

CISA KEV exploit

Has fix

Published date

CVE-2010-20103CRITICAL9.3
  • ProFTPdProFTPd
  • cpe:2.3:a:proftpd:proftpd
NoNoAug 20, 2025
CVE-2024-48651HIGH7.5
  • ProFTPdProFTPd
  • cpe:2.3:a:proftpd:proftpd
NoYesNov 29, 2024
CVE-2023-51713HIGH7.5
  • ProFTPdProFTPd
  • proftpd-devel
NoYesDec 22, 2023
CVE-2021-46854HIGH7.5
  • ProFTPdProFTPd
  • proftpd
NoYesNov 23, 2022
CVE-2023-48795MEDIUM5.9
  • PythonPython
  • openshift4::ose-csi-external-provisioner-rhel8@sha256:51237bd3b0c8c7e7b79de635b57d610a17bc123e644eb9d94da5cf4fc908319e_amd64
NoYesDec 18, 2023

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

Cloud Threat Landscape

A threat intelligence database

PEACH

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."
David EstlickCISO
"Wiz provides a single pane of glass to see what is going on in our cloud environments."
Adam FletcherChief Security Officer
"We know that if Wiz identifies something as critical, it actually is."
Greg PoniatowskiHead of Threat and Vulnerability Management
Get a demo