CVE-2024-4040

Ссылки

• https://github.com/airbus-cert/CVE-2024-4040
  Exploit

  Third Party Advisory
• https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/
  Press/Media Coverage

  Third Party Advisory
• https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update
  Patch

  Vendor Advisory
• https://www.crushftp.com/crush11wiki/Wiki.jsp?page=Update
  Patch

  Vendor Advisory
• https://www.rapid7.com/blog/post/2024/04/23/etr-unauthenticated-crushftp-zero-day-enables-complete-server-compromise/
  Third Party Advisory
• https://www.reddit.com/r/crowdstrike/comments/1c88788/situational_awareness_20240419_crushftp_virtual/
  Exploit

  Issue Tracking
• https://www.reddit.com/r/cybersecurity/comments/1c850i2/all_versions_of_crush_ftp_are_vulnerable/
  Issue Tracking

  Patch
• https://github.com/airbus-cert/CVE-2024-4040
  Exploit

  Third Party Advisory
• https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/
  Press/Media Coverage

  Third Party Advisory
• https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update
  Patch

  Vendor Advisory
• https://www.crushftp.com/crush11wiki/Wiki.jsp?page=Update
  Patch

  Vendor Advisory
• https://www.rapid7.com/blog/post/2024/04/23/etr-unauthenticated-crushftp-zero-day-enables-complete-server-compromise/
  Third Party Advisory
• https://www.reddit.com/r/crowdstrike/comments/1c88788/situational_awareness_20240419_crushftp_virtual/
  Exploit

  Issue Tracking
• https://www.reddit.com/r/cybersecurity/comments/1c850i2/all_versions_of_crush_ftp_are_vulnerable/
  Issue Tracking

  Patch
• https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2024-4040
  US Government Resource

Уязвимые конфигурации