CVE-2023-53886

UNKNOWN 0.0

Xlight FTP Server 3.9.3.6 Stack Buffer Overflow Vulnerability via Execute Program

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Xlight FTP Server 3.9.3.6 contains a stack buffer overflow vulnerability in the 'Execute Program' configuration that allows attackers to crash the application. Attackers can trigger the vulnerability by inserting 294 characters into the program execution configuration, causing a denial of service condition.

CWE	CWE-121
Vendor	xlightftpd
Product	xlight ftp server
Published	Dec 15, 2025
Last Updated	Apr 7, 2026

Stay Ahead of the Next One

Get instant alerts for xlightftpd xlight ftp server

Be the first to know when new unknown vulnerabilities affecting xlightftpd xlight ftp server are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Xlightftpd / Xlight FTP Server

3.9.3.6

References

NVD ↗ CVE.org ↗ EPSS Data ↗

exploit-db.com: https://www.exploit-db.com/exploits/51665 xlightftpd.com: https://www.xlightftpd.com/ vulncheck.com: https://www.vulncheck.com/advisories/xlight-ftp-server-stack-buffer-overflow-vulnerability-via-execute-program

Credits

Yehia Elghaly