python3 is vulnerable to denial of service. The vulnerability exists because the ftplib is using the host from the PASV response which allows an attacker to cause an application crash.
access.redhat.com/security/cve/CVE-2021-4189
bugs.python.org/issue43285
bugzilla.redhat.com/show_bug.cgi?id=2036020
github.com/python/cpython/commit/0ab152c6b5d95caa2dc1a30fa96e10258b5f188e
python-security.readthedocs.io/vuln/ftplib-pasv.html
security-tracker.debian.org/tracker/CVE-2021-4189
security.netapp.com/advisory/ntap-20221104-0004/