Fix CVE-2025-54309 template structure and location

- Move template to correct directory (http/cves/2025/) - Fix author name format (remove spaces) - Fix CVSS score format (cvss_score -> cvss-score) - Simplify and fix Shodan query format - Remove complex metadata arrays that don't follow conventions - Clean up tags and mark as verified - Maintain original functionality and impact
2026-01-31 15:53:33 +08:00 · 2025-07-29 07:42:04 -05:00
parent 7ab25befca
commit 44413668c9
1 changed files with 11 additions and 24 deletions
--- a/http/cves/2025/CVE-2025-54309.yaml
+++ b/http/cves/2025/CVE-2025-54309.yaml
@@ -2,7 +2,7 @@ id: CVE-2025-54309

 info:
  name: CrushFTP - Unprotected Alternate Channel
-  author: ANshu Bind
+  author: anshubind
  severity: critical
  description: |
    CrushFTP 10 before 10.8.5 and 11 before 11.3.4_23, when the DMZ proxy feature is not used, mishandles AS2 validation and consequently allows remote attackers to obtain admin access via HTTPS, as exploited in the wild in July 2025.
@@ -10,39 +10,26 @@ info:
    Remote attackers can gain administrative access, leading to full control over the CrushFTP server.
  remediation: |
    Update to version 10.8.5, 11.3.4_23 or later.
+  reference:
+    - https://www.crushftp.com/crush11wiki/Wiki.jsp?page=CompromiseJuly2025
+    - https://nvd.nist.gov/vuln/detail/CVE-2025-54309
+    - https://github.com/advisories/GHSA-rh5q-v9ww-rqgm
+    - https://github.com/issamjr/CVE-2025-54309-EXPLOIT
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
-    cvss_score: 9
+    cvss-score: 9.0
    cve-id: CVE-2025-54309
    cwe-id: CWE-420
    epss-score: 0.07464
    epss-percentile: 0.91328
    cpe: cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*
  metadata:
+    verified: true
+    max-request: 1
    vendor: crushftp
    product: crushftp
-    shodan-query:
-      - http.html:"crushftp"
-      - title:"CrushFTP - Login"
-      - title:"CrushFTP WebInterface"
-      - http.favicon.hash:-675750811
-      - http.favicon.hash:-1022206565
-      - http.favicon.hash:838835539
-      - "Server: CrushFTP HTTP Server"
-    fofa-query:
-      - body="crushftp"
-      - title="CrushFTP - Login"
-      - title="CrushFTP WebInterface"
-      - icon_hash="-675750811"
-      - icon_hash="-1022206565"
-      - icon_hash="838835539"
-      - "Server: CrushFTP HTTP Server"
-  reference:
-    - https://www.crushftp.com/crush11wiki/Wiki.jsp?page=CompromiseJuly2025
-    - https://nvd.nist.gov/vuln/detail/CVE-2025-54309
-    - https://github.com/advisories/GHSA-rh5q-v9ww-rqgm
-    - https://github.com/issamjr/CVE-2025-54309-EXPLOIT
-  tags: cve,cve2025,crushftp,rce,unauthenticated
+    shodan-query: title:"CrushFTP"
+  tags: cve,cve2025,crushftp,rce

 variables:
  cmd: "id"