CVE-2025-47812CRITICAL 10.0CISA KEVEPSS p99.9%

CVE-2025-47812Wing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerability

Wing FTP Server / Wing FTP Server

Description

Wing FTP Server contains an improper neutralization of null byte or NUL character vulnerability that can allow injection of arbitrary Lua code into user session files. This can be used to execute arbitrary system commands with the privileges of the FTP service (root or SYSTEM by default).

Scoring

CVSS 3.110.0 (CRITICAL)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
EPSS95.34% probability of exploitation · percentile 99.9% · 2026-06-15T12:03:41Z
Published2025-07-10
Last modified2025-11-05

CISA KEV entry

Added to KEV: 2025-07-14

Underlying weaknesses· 1

CWE-158

References

  1. https://www.rcesecurity.com/2025/06/what-the-null-wing-ftp-server-rce-cve-2025-47812/
  2. https://www.vicarius.io/vsociety/posts/cve-2025-47812-detection-script-remote-code-execution-vulnerability-in-wing-ftp-server
  3. https://www.vicarius.io/vsociety/posts/cve-2025-47812-mitigation-script-remote-code-execution-vulnerability-in-wing-ftp-server
  4. https://www.wftpserver.com
  5. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-47812
  6. https://www.huntress.com/blog/wing-ftp-server-remote-code-execution-cve-2025-47812-exploited-in-wild

1

TypeTargetConfidenceTier
WeaknessImproper Neutralization of Null Byte or NUL Charactercwe-1580%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryWing FTP Server Improper Neutralization of Null Byte or NUL Character Vulnerabilitykev-cve-2025-478120%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-27889
CVE
Wing FTP Server Information Disclosure Vulnerability
CVE
CVE-2025-5218
CVE
CVE-2025-5548
CVE
CVE-2025-5665
CVE
CVE-2025-5219
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.