cognitive cybersecurity intelligence

News and Analysis

Search

CrushFTP Vulnerability Exploited in Attacks Following PoC Release

Security researchers report active exploitation of a critical authentication bypass vulnerability (CVE-2025-2825) in CrushFTP, affecting versions up to 11.3.0. Approximately 1,512 unpatched instances exist globally, primarily in North America. Exploits allow unauthenticated remote access, risking system compromise. Users are advised to upgrade to version 11.3.1 or 10.8.4+ and apply recommended mitigations immediately.

Source: cybersecuritynews.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts