Skip to main content

Censys Release Notes for April 7, 2025

Related products:Censys SearchCensys Attack Surface Management (ASM)Censys Platform

MattK_Censys
Forum|alt.badge.img+2

The following enhancements and improvements are now available to Censys users.

Rapid Response

The Censys Rapid Response team published information about and queries for the following issues and vulnerabilities.

New Fingerprints

Added the following fingerprints.

Type

Name

Description

Query

risk

Vulnerable CrushFTP [CVE-2025-2825, CVE-2025-31161]

CrushFTP contains an unauthenticated authentication bypass vulnerability. This affects CrushFTP versions 10.0.0 through 10.8.3 and 11.0.0 through 11.3.0. There are two CVE-IDs because the original CVE-2025-2825 was assigned by VulnCheck, but the vendor has identified the CVE-ID as CVE-2025-31161.

ASM query

risk

Vulnerable Ivanti Connect Secure Application [CVE-2025-22457]

This Ivanti Connect Secure (before 22.7R2.6) application is vulnerable to CVE-2025-22457. This vulnerability allows an unauthenticated attacker to achieve remote code execution. ASM query

software

Medsynapse PACS

Medsynapse PACS is a web-based picture archiving and communication system (PACS) for transfer of medical images within and outside hospitals.

Platform query

Legacy Search query


 


Cookie policy

We use cookies to enhance and personalize your experience. If you accept you agree to our full cookie policy. Learn more about our cookies.

 
Cookie settings