CrushFTP vulnerability exploited in the wild, added to CISA KEV database

A critical flaw was discovered in file transfer tool CrushFTP
Experts claim the issue was being abused in the wild
CISA added the flaw to its KEV catalog

A critical-severity vulnerability plaguing file transfer software CrushFTP was found being actively exploited in the wild.

Earlier this month, it was reported that the software, commonly used by organizations to handle large-scale file transfers, contained an authentication bypass vulnerability which allowed unauthenticated attackers to gain administrative access.

By specifically targeting the crushadmin account, threat actors could abuse the flaw to compromise the target system entirely.

CISA adds it to KEV

The flaw is now tracked as CVE-2025-31161, and was given a severity score of 9.8/10 (critical)

It affects CrushFTP versions 10 before 10.8.4 and 11 before 11.3.1. Users are strongly advised to update to these versions immediately, and if they can’t, enabling the DMZ proxy instance can serve as a temporary workaround.

Security researchers have warned that the bugs were used in the wild to install remote management tools like AnyDesk and MeshAgent, The Hacker News reported.

CISA has also picked up on the news, adding the bug to its Known Exploited Vulnerabilities Catalog (KEV). This means that Federal Civilian Executive Branch (FCEB) agencies have a three-week deadline (until April 28) to apply the patch, or stop using CrushFTP entirely.

Cybercriminals often target managed file transfer software vulnerabilities, since they could allow access to sensitive corporate files and databases. In fact, one of the most devastating cyberattacks in recent history happened in 2023, when ransomware operator Cl0p abused a previously unknown SQL injection vulnerability in MOVEit managed file transfer software to breach hundreds of corporations around the world.

A year before that, GoAnywhere MFT was breached and used to steal sensitive data from almost 130 organizations, and in January 2024, the same software was found to be vulnerable to a critical path traversal weakness flaw.

https://cdn.mos.cms.futurecdn.net/uTLwBhC26YCauAq8Swffd8-1200-80.jpg

Source link

How I quit social media for a month… and then ended up right back where I started

Astell & Kern’s off-shoot brand just dropped some of the best budget audiophile earbuds of the year — and you won’t believe how cheap...

Shokz OpenFit Pro review: a great-sounding contender for the open earbud crown

The Pitt season 3: shock cast changes and everything we know so far about the hit HBO Max medical drama’s return

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Save Over 50% Off a Sonos Sub Wireless Subwoofer During the Sonos Earth Day Sale This Weekend

‘The Rachel Incident’ Writer & Producers Discuss Adapting TV

How to Watch 2026 NBA Playoffs Online: Livestream Basketball Games

Festival Season Sunglasses on Amazon: Shop Aviators, Retro Shades & More

Trump has already endorsed the Monroe Doctrine. Now he needs to endorse the Truman Doctrine

HDFC Bank Q4 Results: Net profit rises 9% to Rs 19,221 crore; announces Rs 13 dividend for FY26

Bank of England governor warns of ’very big energy shock’ amid Iran conflict

From drought to demand: Biotech IPOs roar back with Kailera and Alamar

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays

CrushFTP vulnerability exploited in the wild, added to CISA KEV database

Save Over 50% Off a Sonos Sub Wireless Subwoofer During the Sonos Earth Day Sale This Weekend

Trump has already endorsed the Monroe Doctrine. Now he needs to endorse the Truman Doctrine

How I quit social media for a month… and then ended up right back where I started

‘The Rachel Incident’ Writer & Producers Discuss Adapting TV