Medium severity6.1NVD Advisory· Published Aug 30, 2017· Updated May 13, 2026
CVE-2017-14037
CVE-2017-14037
Description
CrushFTP before 7.8.0 and 8.x before 8.2.0 has an HTTP header vulnerability.
Affected products
5cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*range: <=7.7.0
- cpe:2.3:a:crushftp:crushftp:8.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:crushftp:crushftp:8.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:crushftp:crushftp:8.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:crushftp:crushftp:8.1.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- crushftp.com/version7.htmlnvdVendor Advisory
- crushftp.com/version8.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.