CVE-2020-37068

CriticalPublic PoC

Published: 03 February 2026

Published

03 February 2026

Modified

25 February 2026

KEV Added

—

Patch

—

CVSS Score 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Score 0.0019 40.8th percentile

Risk Priority 20 60% EPSS · 20% KEV · 20% CVSS

Description

Konica Minolta FTP Utility 1.0 contains a buffer overflow vulnerability in the LIST command that allows attackers to overwrite system registers. Attackers can send an oversized buffer of 1500 'A' characters to crash the FTP server and potentially execute unauthorized…

code.

Mitigating Controls (NIST 800-53 r5)AI

SI-10 Information Input Validation good match

prevent

Requires validation of all inputs, directly preventing buffer overflows from oversized LIST command buffers in the FTP utility.

SI-16 Memory Protection good match

prevent

Implements memory protections such as stack guards and non-executable memory to mitigate register overwrites and potential code execution from the buffer overflow.

SI-2 Flaw Remediation good match

prevent

Mandates timely remediation of flaws like this buffer overflow vulnerability through patching or removal of the affected FTP utility.

Security SummaryAI

CVE-2020-37068 is a buffer overflow vulnerability (CWE-120) affecting Konica Minolta FTP Utility version 1.0, specifically in the handling of the LIST command. The flaw enables attackers to overwrite system registers by sending an oversized buffer, such as 1500 'A' characters, which disrupts normal operation of the FTP server component.

Remote attackers can exploit this vulnerability over the network with low attack complexity, requiring no privileges, user interaction, or special conditions, as reflected in its CVSS v3.1 base score of 9.8 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Exploitation typically crashes the FTP server, resulting in a denial of service, and may allow potential execution of unauthorized code through register manipulation.

References include a Vulncheck advisory detailing the denial-of-service impact via the LIST command, an Exploit-DB entry (ID 48501) with a proof-of-concept exploit, the Konica Minolta US website, and a software download page for the utility. No patches or specific mitigations are described in the provided reference details.

Details

CWE(s): CWE-120

Affected Products

konicaminolta

ftp utility

1.0

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access

Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.

attack.mitre.org →

T1210 Exploitation of Remote Services Lateral Movement

Adversaries may exploit remote services to gain unauthorized access to internal systems once inside of a network.

attack.mitre.org →

T1499.004 Application or System Exploitation Impact

Adversaries may exploit software vulnerabilities that can cause an application or system to crash and deny availability to users.

attack.mitre.org →

Why these techniques?

Buffer overflow in FTP server component enables remote unauthenticated exploitation for initial access (T1190, T1210) and DoS via application crash (T1499.004), with potential RCE.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

References

https://konica-minolta-ftp-utility.software.informer.com/download/
Permissions Required · disclosure@vulncheck.com
https://www.exploit-db.com/exploits/48501
Exploit, Third Party Advisory, VDB Entry · disclosure@vulncheck.com
https://www.konicaminolta.us/
Product · disclosure@vulncheck.com
https://www.vulncheck.com/advisories/konica-minolta-ftp-utility-list-denial-of-service
Third Party Advisory · disclosure@vulncheck.com