New Rapid7 Analysis on AttackerKB topic: CVE-2024-4040

"On Friday, April 19, 2024, managed file transfer vendor CrushFTP [released information](https://www.bleepingcomputer.com/news/security/crushftp-warns-users-to-patch-exploited-zero-day-immediately/) to a private mailing list on a new zero-day vulnerability affecting CrushFTP versions below 10.7.1 and 11.1.0 (as well as legacy 9.x versions) across all platforms ..."

Link: https://www.attackerkb.com/topics/46707820-42d9-44a3-a84a-7f8465055536