A path traversal vulnerability exists in GoAnywhere MFT prior to 7.4.2 which allows attackers to circumvent endpoint-specific permission checks in the GoAnywhere Admin and Web Clients.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.fortra.com/security/advisory/fi-2024-004 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: Fortra
Published: 2024-03-14T14:06:01.498Z
Updated: 2024-08-01T23:36:21.753Z
Reserved: 2024-02-06T21:23:57.925Z
Link: CVE-2024-25156
Vulnrichment
Updated: 2024-08-01T23:36:21.753Z
NVD
Status : Awaiting Analysis
Published: 2024-03-14T14:15:07.857
Modified: 2024-03-14T14:21:20.217
Link: CVE-2024-25156
Redhat
No data.