VDB
CVE-2025-2825
CVE-2025-2825
PUBLISHED
CrushFTP ist eine File-Transfer Software für verschiedene Plattformen.
EPSS 5.28% · 89.1th percentile
Risk Scores
EPSS Score
5.28%
89.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| CrushFTP | CrushFTP CrushFTP <v11.3.1 | |
| CrushFTP | CrushFTP CrushFTP v11 |
Timeline
- Mar 20, 2025 CVE Published
- Mar 26, 2025 PoC Published
- Mar 26, 2025 PoC Published
- Mar 27, 2025 EPSS Score
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
- Mar 27, 2025 PoC Published
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0615.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0615 advisory
- https://www.crushftp.com/crush11wiki/Wiki.jsp?page=Update advisory
- https://www.runzero.com/blog/crushftp/ advisory
- https://nvd.nist.gov/vuln/detail/CVE-2025-2825 advisory
- https://projectdiscovery.io/blog/crushftp-authentication-bypass advisory