Security researcher Simon Garrelou from Airbus CERT identifies a flaw in CrushFTP’s software allowing users to escape the Virtual File System and download system files, leading to targeted attacks and urging users to update to version 11.1.0.
View full story…
Critical Zero-Day Vulnerability Discovered in CrushFTP’s File Transfer Software
