Fortra (formerly, HelpSystems) GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object. This issue was patched in version 7.1.2.

nessus 1

malwarebytes 3

packetstorm 2

prion 1

hivepro 1

github 1

rapid7blog 4

attackerkb 1

cisa_kev 1

metasploit 1

thn 5

githubexploit 6

osv 1

qualysblog 3

zdt 2

talosblog 2

cve 1

nuclei 1

exploitdb 1

impervablog 1

ics 2

nessus

Fortra GoAnywhere Managed File Transfer (MFT) < 7.1.2 Pre-Authentication Command Injection (CVE-2023-0669)

2023-02-22 00:00:00

malwarebytes

Clop ransomware is victimizing GoAnywhere MFT customers

2023-03-14 04:00:00

GoAnywhere zero-day opened door to Clop ransomware

2023-02-20 02:00:00

Rubrik is latest victim of the Clop ransomware zero-day campaign

2023-03-17 16:30:00

packetstorm

Fortra GoAnywhere MFT Unsafe Deserialization Remote Code Execution

2023-02-09 00:00:00

Goanywhere Encryption Helper 7.1.1 Remote Code Execution

2023-04-10 00:00:00

prion

Command injection

2023-02-06 20:15:00

hivepro

Clop Ransomware Group Claims Responsibility for GoAnywhere MFT Attacks

2023-02-13 11:34:45

github

Withdrawn: Fortra GoAnywhere MFT Deserialization of Untrusted Data vulnerability affects metasploit-framework

2023-02-06 21:30:29

rapid7blog

Exploitation of GoAnywhere MFT zero-day vulnerability

2023-02-03 16:18:21

CVE-2024-0204: Critical Authentication Bypass in Fortra GoAnywhere MFT

2024-01-23 18:42:31

Metasploit Weekly Wrap-Up

2023-02-10 19:39:42

attackerkb

CVE-2023-0669

2023-02-13 00:00:00

cisa_kev

Fortra GoAnywhere MFT Remote Code Execution Vulnerability

2023-02-10 00:00:00

metasploit

Fortra GoAnywhere MFT Unsafe Deserialization RCE

2023-02-08 15:24:27

thn

Fortra Sheds Light on GoAnywhere MFT Zero-Day Exploit Used in Ransomware Attacks

2023-04-20 11:22:00

Patch Your GoAnywhere MFT Immediately - Critical Flaw Lets Anyone Be Admin

2024-01-24 05:32:00

CISA Warns of Active Attacks Exploiting Fortra MFT, TerraMaster NAS, and Intel Driver Flaws

2023-02-11 05:45:00

githubexploit

Exploit for Deserialization of Untrusted Data in Fortra Goanywhere Managed File Transfer

2023-02-26 02:33:54

Exploit for Deserialization of Untrusted Data in Fortra Goanywhere Managed File Transfer

2023-02-26 02:33:54

Exploit for Deserialization of Untrusted Data in Fortra Goanywhere Managed File Transfer

2023-02-21 18:47:42

osv

Fortra GoAnywhere MFT Deserialization of Untrusted Data vulnerability affects metasploit-framework

2023-02-06 21:30:29

qualysblog

Forta GoAnywhere Zero-Day Exploited By Threat Actors

2023-02-15 23:34:54

Qualys Survey of Top 10 Exploited Vulnerabilities in 2023

2023-09-26 13:04:00

2023 Threat Landscape Year in Review: If Everything Is Critical, Nothing Is

2023-12-19 15:00:00

zdt

Fortra GoAnywhere MFT Unsafe Deserialization Remote Code Execution Exploit

2023-02-13 00:00:00

Goanywhere Encryption helper 7.1.1 - Remote Code Execution Exploit

2023-04-08 00:00:00

talosblog

Threat Source newsletter (Feb. 23, 2023) — Social media sites are making extra security a paid feature

2023-02-23 19:00:45

Incident Response trends Q2 2023: Data theft extortion rises, while healthcare is still most-targeted vertical

2023-07-26 12:00:57

cve

CVE-2023-0669

2023-02-06 20:15:14

nuclei

Fortra GoAnywhere MFT - Remote Code Execution

2023-02-10 14:50:32

exploitdb

Goanywhere Encryption helper 7.1.1 - Remote Code Execution (RCE)

2023-04-08 00:00:00

impervablog

Why Attackers Target the Government Industry

2023-05-09 14:47:17

ics

#StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability

2023-06-07 12:00:00

Understanding Ransomware Threat Actors: LockBit

2023-06-14 12:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

6.9 Medium

AI Score

Confidence

Low

0.97 High

EPSS

Percentile

99.7%

JSON

Related for CVELIST:CVE-2023-0669