.. / CVE-2024-4040

Exploit for CrushFTP VFS < 10.7.1, 11.1.0 - Authenticated Local File Inclusion (CVE-2024-4040)

Description:

VFS Sandbox Escape in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows remote attackers with low privileges to read files from the filesystem outside of VFS Sandbox.

Affected Products:

Proof of Concept

PoC exploit

Nuclei Template

View the template here CVE-2024-4040.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2024/CVE-2024-4040.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2024-4040
https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/
https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update
https://www.reddit.com/r/crowdstrike/comments/1c88788/situational_awareness_20240419_crushftp_virtual/
https://www.reddit.com/r/cybersecurity/comments/1c850i2/all_versions_of_crush_ftp_are_vulnerable/