Goanywhere Managed File Transfer Security Vulnerabilities and Issues — Goanywhere Managed File Transfer CVE List

Lucene search

FortraGoanywhere Managed File Transfer

3 matches found

CVE•added 2024/01/22 6:15 p.m.•132 views

CVE-2024-0204

Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.

9.8CVSS9.2AI score0.93334EPSS

CVE•added 2024/03/14 2:15 p.m.•71 views

CVE-2024-25156

A path traversal vulnerability exists in GoAnywhere MFT prior to 7.4.2 which allows attackers to circumvent endpoint-specific permission checks in the GoAnywhere Admin and Web Clients.

6.5CVSS6.4AI score0.00345EPSS

CVE•added 2024/08/14 3:15 p.m.•53 views

CVE-2024-25157

An authentication bypass vulnerability in GoAnywhere MFT prior to 7.6.0 allows Admin Users with access to the Agent Console to circumvent some permission checks when attempting to visit other pages. This could lead to unauthorized information disclosure or modification.

6.5CVSS6.4AI score0.00172EPSS