Use Suricata or Snort with rules enabled to detect the signature string :) sent over FTP control channels.
Nmap provides reliable version detection using the -sV flag: vsftpd 208 exploit github fix
Even with a patched version, FTP is inherently risky. Implement these changes in /etc/vsftpd.conf : Use Suricata or Snort with rules enabled to