Phoenix
Sigma IntelligenceBeta
Rule Library

Sigma Rules

1 rule found for "CVE-2025-54309"

3,731Total
3,132Detection
457Emerging
139Hunting
Emerging Threathighexperimental

Potential Exploitation of CrushFTP RCE Vulnerability (CVE-2025-54309)

Detects suspicious child processes created by CrushFTP. It could be an indication of exploitation of a RCE vulnerability such as CVE-2025-54309.

WindowsProcess Creation
Nisarg SutharFri Aug 012025