Article

Alert: Wing FTP Server Security Update - July 2025

A critical vulnerability(CVE-2025-47812) in Wing FTP Server has been patched, addressing a flaw that could allow attackers to execute arbitrary code and gain elevated privileges on affected systems.

Affected Systems:

The affected systems and versions include:

Wing FTP Server versions 7.4.3 and earlier running on Windows, Linux, and macOS.

Security Risks

The identified critical vulnerabilities in various Wing FTP Server pose a serious threat, potentially allowing attackers to compromise affected systems and gain unauthorized control.

Recommended Actions

The National Cyber Security Authority (NCSA) recommends users and system administrators to:

Update, as soon as possible, to the latest supported version for the Wing FTP Server in order to address the vulnerability and effectively mitigate associated risks.

The Wing FTP Software versions available for upgrade include:

Wing FTP Server versions 7.4.4 or above running on Windows, Linux, and macOS.

Before updating or patching, please ensure that you have the latest backup that can easily be restored.

For further information and support, please contact the National Cyber Security Authority (NCSA) by email to rwcsirt@ncsa.gov.rw or call us on 9009.

References

14 July 2025

More updates

14 July 2025

Alert: WordPress Security Update – July 2025

Wordfence has released security patches for its WordPress plugin.

11 July 2025

Alert: Fortinet Security Updates – July 2025

Fortinet has released a security update addressing multiple vulnerabilities in its products.

11 July 2025

Alert: Microsoft Security Updates – July 2025

Microsoft has released security updates to address vulnerabilities in its software products.

12 June 2025

Alert: Microsoft Security Updates – June 2025

Microsoft has released security updates to address vulnerabilities in its software products.

	info@ncsa.gov.rw
	9009 / 0781813310
	‎+250 791 445 224