all InfoSec news
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
April 20, 2024, 5:18 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
"CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and download system files," CrushFTP said in an advisory released Friday.
attacks can critical critical update crushftp discovery download enterprise escape exploitation exploited file files file transfer flaw in the wild latest security security flaw software system targeted attacks transfer under update version vulnerability zero-day zero-day flaw
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Senior - Penetration Tester
@ Deloitte | Madrid, España
Associate Cyber Incident Responder
@ Highmark Health | PA, Working at Home - Pennsylvania
Senior Insider Threat Analyst
@ IT Concepts Inc. | Woodlawn, Maryland, United States