CrushFTP Zero-Day (CVE-2025-54309) Actively Exploited via AS2 Flaw – Patch Now!
The CrushFTP service has encountered a newly discovered critical vulnerability, already being exploited in active attacks. Designated CVE-2025-54309 and assigned a CVSS severity score of 9.0, the flaw stems from improper handling of AS2...