Critical Update: CrushFTP Zero-Day Flaw Exploited in Targeted Attacks
Users of the CrushFTP enterprise file transfer software are being urged to update to the latest version following the discovery of a security flaw that has come under targeted exploitation in the wild.
“CrushFTP v11 versions below 11.1 have a vulnerability where users can escape their VFS and download system files,” CrushFTP said in an advisory released Friday.
2024-04-20 05:18:00
News
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions
GitLab Patches Critical SAML Authentication Bypass Flaw in CE and EE Editions Sep 19, 2024Ravie LakshmananEnterprise Security / DevOps GitLab has released patches to address a critical flaw impacting Community Edition (CE) and Enterprise Edition Read more…
0 Comments