all InfoSec news
Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
April 20, 2024, 5:18 a.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
"CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and download system files," CrushFTP said in an advisory released Friday.
attacks can critical critical update crushftp discovery download enterprise escape exploitation exploited file files file transfer flaw in the wild latest security security flaw software system targeted attacks transfer under update version vulnerability zero-day zero-day flaw
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
SITEC- Systems Security Administrator- Camp HM Smith
@ Peraton | Camp H.M. Smith, HI, United States
Cyberspace Intelligence Analyst
@ Peraton | Fort Meade, MD, United States
General Manager, Cybersecurity, Google Public Sector
@ Google | Virginia, USA; United States
Cyber Security Advisor
@ H&M Group | Stockholm, Sweden
Engineering Team Manager – Security Controls
@ H&M Group | Stockholm, Sweden