CVE-2025-54309
⚠ KEVEPSS 76.8%CrushFTP Unprotected Alternate Channel Vulnerability
加入 CISA KEV 日:2025/7/22
描述
CrushFTP contains an unprotected alternate channel vulnerability. When the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS.
受影響套件(0)
OSV 沒有提供套件對應。