cve/2022/CVE-2022-41985.md

### [CVE-2022-41985](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-41985)
![](https://img.shields.io/static/v1?label=Product&message=uC-FTPs&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20v%201.98.00%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-303%3A%20Incorrect%20Implementation%20of%20Authentication%20Algorithm&color=brighgreen)

### Description

An authentication bypass vulnerability exists in the Authentication functionality of Weston Embedded uC-FTPs v 1.98.00. A specially crafted set of network packets can lead to authentication bypass and denial of service. An attacker can send a sequence of unauthenticated packets to trigger this vulnerability.

### POC

#### Reference
- https://talosintelligence.com/vulnerability_reports/TALOS-2022-1680

#### Github
No PoCs found on GitHub currently.