Vulnerability in CrushFTP
1. The vulnerability permits a remote user to delete arbitrary files.
2. It stems from the application's capability to access files beyond the virtual file system.
3. Remote authenticated users can exploit this to read arbitrary system files.
4. The vulnerability enables unauthorized access to sensitive system resources.
5. Successful exploitation may lead to data loss or compromise of system integrity.
#advisorysb2024042213
#arbitraryfiledownload
#crushftp
#cve20244040
#cwe73
#filepathcontrol
#externalcontrol
#cybersecurity
#vulnerabilitydetails
#securityadvisory
#systemsecurity
#networksecurity
#zeroday
#vulnerabilities
#exploit
#bugbounty
#pentest
#course
#online
#offline
#offensivesecurity
#arbitraryfiledownload
#crushftp
#cve20244040
#cwe73
#filepathcontrol
#externalcontrol
#cybersecurity
#vulnerabilitydetails
#securityadvisory
#systemsecurity
#networksecurity
#zeroday
#vulnerabilities
#exploit
#bugbounty
#pentest
#course
#online
#offline
#offensivesecurity