← Back to Search

CrushFTP

2025-07-22 · Severity 5/10 — Medium · Unknown
Incident Summary

CrushFTP contains an unprotected alternate channel vulnerability. When the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via

Sources
https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Details
Records Affected
Unknown
Industry
Technology
Headquarters
Date Reported
2025-07-22
Related Breaches

No related breaches in the last 90 days.