CVE-2025-31161: CrushFTP Authentication Bypass
Is CrushFTP vulnerable to auth bypass?
An authentication bypass vulnerability in CrushFTP managed file transfer server. Unauthenticated attackers can access any user account including admin by exploiting a race condition in the HTTP authentication handler.
Impact & Exploitation
Mass exploitation by ransomware groups within days of disclosure. CrushFTP is used by enterprises for secure file transfer. Enables data exfiltration and ransomware deployment.
How Precogs AI Detects CrushFTP Authentication Bypass
Precogs AI detects authentication race conditions in compiled file transfer applications, identifying bypass vectors in managed file transfer server binaries.
Precogs Research
This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.