← ExploitWatch
HomeExploited Vulnerabilities

CVE-2025-54309 — Actively Exploited: CrushFTP (CrushFTP)

CrushFTP contains an unprotected alternate channel vulnerability. When the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS.

CVE IDCVE-2025-54309
VendorCrushFTP
ProductCrushFTP
Vulnerability nameCrushFTP Unprotected Alternate Channel Vulnerability
Date added2025-07-22
Remediation due2025-08-12
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionCrushFTP contains an unprotected alternate channel vulnerability. When the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →