CP
cyberpings
VulnerabilitiesHIGH

Vulnerabilities - CISA Flags Wing FTP Server Flaw Exploited

BCBleepingComputer
CVE-2025-47813CVE-2025-47812CISAWing FTP ServerRemote Code Execution
🎯

Basically, there's a flaw in Wing FTP Server that hackers can use to take control of systems.

Quick Summary

CISA has issued a warning about a critical vulnerability in Wing FTP Server. This flaw affects numerous organizations, including federal agencies. Immediate patching is essential to prevent potential remote code execution attacks.

The Flaw

CISA has raised alarms about a serious vulnerability in Wing FTP Server, tracked as CVE-2025-47813. This flaw allows attackers with low privileges to uncover the full installation path of the application on unpatched servers. It stems from an error message that inadvertently reveals sensitive information when a long value is used in the UID cookie. This vulnerability is particularly dangerous because it can be exploited in conjunction with another critical flaw, CVE-2025-47812, which enables remote code execution (RCE).

The implications of this vulnerability are significant, especially given that Wing FTP Server is used by over 10,000 customers globally, including high-profile organizations like the U.S. Air Force and Sony. The potential for exploitation is high, as attackers have already begun leveraging this flaw in the wild, just one day after its technical details were disclosed.

What's at Risk

The risk associated with CVE-2025-47813 is compounded by its ability to be chained with the RCE vulnerability. If exploited, attackers could gain unauthorized access to sensitive data or even take control of the affected systems. This poses a substantial threat to federal agencies and private sector organizations alike. CISA has emphasized that this type of vulnerability is a common attack vector for malicious actors, highlighting the urgency for organizations to act swiftly.

Patch Status

CISA has mandated that Federal Civilian Executive Branch (FCEB) agencies secure their systems against this vulnerability within two weeks, in accordance with the November 2021 Binding Operational Directive (BOD) 22-01. The developers of Wing FTP Server released a patch in May 2025 that addresses this flaw, along with other critical vulnerabilities. However, many organizations may still be running outdated versions of the software, leaving them exposed.

Immediate Actions

Organizations using Wing FTP Server should take immediate action to mitigate the risks associated with CVE-2025-47813. CISA recommends applying the available patches as per vendor instructions. For those unable to implement mitigations, discontinuing the use of the product may be necessary. Additionally, organizations should monitor their systems for any signs of exploitation and remain vigilant against potential attacks. CISA's warning serves as a crucial reminder of the importance of maintaining up-to-date security practices and being proactive in addressing vulnerabilities.

🔒 Pro insight: The rapid exploitation of CVE-2025-47813 underscores the need for organizations to prioritize timely patch management to mitigate risks.

Original article from

BleepingComputer · Sergiu Gatlan

Read Full Article

Share

Related Pings

CRITICALVulnerabilities

CVE-2025-47812 - Critical Wing FTP Server Vulnerability Alert

A critical vulnerability in Wing FTP Server has been discovered and actively exploited. Users of versions v7.4.3 and prior are at risk. Immediate updates to v7.4.4 are essential for protection.

Canadian Cyber Centre Alerts·
HIGHVulnerabilities

UK's Companies House - Security Flaw Exposed Business Data

A serious security flaw at Companies House exposed sensitive data of five million companies for five months. This raises significant concerns about data protection and privacy. Companies House is investigating the incident and has reported it to the relevant authorities.

BleepingComputer·
HIGHVulnerabilities

Microsoft Edge Vulnerability - Critical Update Released

Microsoft has released a critical update for Edge to fix CVE-2026-3910. Users must update to version 146.0.3856.59. This vulnerability poses serious risks, so immediate action is essential.

Canadian Cyber Centre Alerts·
HIGHVulnerabilities

Vulnerabilities - CISA Adds CVE-2025-47813 to Catalog

CISA has added a new vulnerability to its catalog, CVE-2025-47813. This flaw affects the Wing FTP Server and poses serious risks to federal networks. Timely remediation is crucial to prevent exploitation. Organizations are urged to prioritize addressing this vulnerability.

CISA Advisories·
HIGHVulnerabilities

Vulnerabilities - Qihoo 360 Exposes Wildcard SSL Private Key

Qihoo 360 has leaked its wildcard SSL private key in a public installer. This exposes users to serious security risks, including data interception and impersonation. The company is taking steps to mitigate the fallout.

Cyber Security News·
HIGHVulnerabilities

CISA Issues Security Advisories for Multiple ICS Vulnerabilities

CISA has issued important advisories regarding vulnerabilities in various ICS products. Key systems from Honeywell and Siemens are affected. Users must apply updates to mitigate potential risks. Stay vigilant and secure your infrastructure.

Canadian Cyber Centre Alerts·