CNNVD-202602-2089 Information

Feb 12, 2026 cve

CNNVD ID

CNNVD-202602-2089

CVE-2025-67433

CNNVD Published: 2026-02-12

Description (Chinese)

Open TFTP Server MultiThreaded是achaldhir个人开发者的一个TFTP协议文件传输工具。 Open TFTP Server MultiThreaded 1.7版本存在安全漏洞，该漏洞源于processRequest函数存在堆缓冲区溢出，可能导致通过特制DATA数据包触发拒绝服务。

Description (English)

Open TFTP Server MultiThreaded is a TFTP protocol transfer tool for the personal developer of achardhir. Open TFTP Server MultiThreaded 1.7 has a security loophole, which stems from the proliferation of buffers in the ProcessRequest function, which may trigger the denial of services through a specially designed DATA data package.

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2026-02-12

Last Modified

2026-02-24

References

https://gist.github.com/Hyobin/f1b7d48d29e60a378bb9c88ba8b8080a https://gist.github.com/transparencybeam/f1b7d48d29e60a378bb9c88ba8b8080a https://sourceforge.net/projects/tftp-server/files/tftp%20server%20multithreaded/ https://access.redhat.com/security/cve/cve-2025-67433

Share on: