Critical Remote Code Execution Vulnerability in Monsta FTP Discovered

Critical Remote Code Execution Vulnerability in Monsta FTP Discovered

First seen 2 Dec 2025, 18:33 UTC ThreatclusterGbhackersHeise.De 79% similarity 53.2

Article Content

Browse articles
ThreatCluster

A remote code execution vulnerability, CVE-2025-34299, has been identified in Monsta FTP, affecting versions 2.11 and earlier. This flaw allows unauthenticated users to upload arbitrary files, enabling attackers to execute malicious code. An update is available to address this critical risk, rated CVSS 9.3.

ThreatCluster AI

Community

Browse all →