Detections
Analytics

CrushFTP < 10.7.1 / 11.x < 11.1.0 Sandbox Escape (CVE-2024-4040) (Direct Check)

critical Nessus Plugin ID 193917

Language:

Synopsis

The remote host is affected by a sandbox escape vulnerability.

Description

The CrushFTP application installed on the remote host is missing a vendor-supplied patch. It is, therefore, affected by a sandbox escape vulnerability. VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows remote attackers with low privileges to read files from the filesystem outside of VFS Sandbox.

Solution

Update to version 10.7.1, 11.1.0 or later.

See Also

http://www.nessus.org/u?a8ee3ee0

Plugin Details

Severity: Critical

ID: 193917

File Name: crushftp_cve-2024-4040.nbin

Version: 1.0

Type: remote

Family: Web Servers

Published: 4/26/2024

Updated: 4/26/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Critical

Score: 10.0

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:N/A:N

CVSS Score Source: CVE-2024-4040

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:crushftp

Exploit Available: true

Exploit Ease: Exploits are available

Exploited by Nessus: true

Patch Publication Date: 4/19/2024

Vulnerability Publication Date: 4/19/2024

Reference Information

CVE: CVE-2024-4040