Known Vulnerabilities
CVE-2024-9945
An information-disclosure vulnerability exists in Fortra's GoAnywhere MFT application prior to version 7.7.0 that allows external access to the resources in certain admin root folders.
MEDIUM
CVSS 5.3
Published Dec 13, 2024
CVE-2023-0669
Fortra (formerly, HelpSystems) GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object. This issue was patched in version 7.1.2.
UNKNOWN
CVSS 7.2
Published Feb 06, 2023