HIGH
globalscape
CVE published 2026-05-25
CVE-2018-25366
A buffer overflow vulnerability exists in CuteFTP 5.0 XP that allows local attackers to execute arbitrary code. The vulnerability is triggered when a malicious payload exceeding 520 bytes is injected into the Site Manager label field. When a shortcut is subsequently created and launched, the payload overwrites the return address and executes shellcode. The vulnerability has a CVSS 4.0 score of 8.6 (HIGH s [truncated]