Vulnerabilities > Winscp > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-27 | CVE-2021-3331 | Unspecified vulnerability in Winscp WinSCP before 5.17.10 allows remote attackers to execute arbitrary programs when the URL handler encounters a crafted URL that loads session settings. | 9.8 |
| 2020-11-23 | CVE-2020-28864 | Classic Buffer Overflow vulnerability in Winscp 5.17.8 Buffer overflow in WinSCP 5.17.8 allows a malicious FTP server to cause a denial of service or possibly have other unspecified impact via a long file name. | 9.8 |