<ul><li>A critical zero-day vulnerability, identified as CVE-2024-4040, is being exploited in the wild, targeting U.S. organizations that use CrushFTP servers.</li><li>The vulnerability allows remote attackers to bypass system security, download files, and potentially gain full system control.</li><li>The flaw impacts versions prior to 10.7.1 and 11.1.0 of CrushFTP, as well as all legacy CrushFTP 9 installations.</li><li>Organizations are advised to update their systems to the patched version and implement additional security measures to mitigate the risk.</li></ul>

CVE-2024-4040 Detection: A Critical CrushFTP Zero-Day Vulnerability Exploited in the Wild Targeting U.S. Organizations

Discover more