High severity8.8NVD Advisory· Published Apr 27, 2026· Updated May 7, 2026

CVE-2026-6265

Description

Insecure preserved inherited permissions vulnerability in Cerberus FTP Server on Windows allows Privilege Escalation.This issue has been resolved in Cerberus FTP Server: 2026.1

Affected products

Cerberusftp/Ftp Server
cpe:2.3:a:cerberusftp:ftp_server:*:*:*:*:*:*:*:*
Range: <2026.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

labs.reversec.com/advisories/2026/04/cerberus-ftp-server-elevation-of-privilegesnvdVendor AdvisoryExploit
www.cerberusftp.com/releasenotes/nvdRelease Notes

News mentions

No linked articles in our index yet.

cvss	0.572
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000