CNNVD-202512-3776 Information

CNNVD ID

CNNVD-202512-3776

Related CVE

CVE-2023-53959

• CNNVD Published: 2025-12-19

Description (Chinese)

FileZilla是一款基于Windows平台的开源FTP/SFTP客户端。 FileZilla Client 3.63.1版本存在代码问题漏洞，该漏洞源于DLL劫持漏洞，可能导致远程代码执行。

Description (English)

FileZilla is an open source FTP/SFTP client based on Windows platforms. There is a code gap in FileZilla Clinic 3.63.1, which stems from the DLL hijacking loophole, which may lead to remote code implementation.

Hazard Level

Low

Vulnerability Type

代码问题

Published

2025-12-19

Last Modified

2026-02-24

References

https://filezilla-project.org/ https://www.vulncheck.com/advisories/filezilla-client-dll-hijacking-via-missing-textshapingdll https://www.exploit-db.com/exploits/51267 https://access.redhat.com/security/cve/cve-2023-53959

Patch

https://filezilla-project.org/download.php?type=client