PoC exploit for critical RCE flaw in Fortra FileCatalyst transfer tool released | allinfosecnews.com

March 18, 2024, 8:41 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Fortra addressed a critical remote code execution vulnerability impacting its FileCatalyst file transfer product. Fortra has released updates to address a critical vulnerability, tracked as CVE-2024-25153 (CVSS score 9.8) impacting its FileCatalyst file transfer solution. A remote, unauthenticated attacker can exploit their vulnerability to execute arbitrary code on impacted servers. “A directory traversal within the ‘ftpservlet’ of the FileCatalyst […]

address arbitrary code attacker breaking news can code code execution critical critical vulnerability cve cvss cvss score exploit file file transfer flaw fortra hacking poc poc exploit product rce remote code remote code execution score security solution tool transfer unauthenticated updates vulnerability

More from securityaffairs.co / Security Affairs

Security Affairs newsletter Round 474 by Pierluigi Paganini – INTERNATIONAL EDITION 2 hours ago | securityaffairs.co

apache articles box breach +20

Ticketmaster confirms data breach impacting 560 million customers 17 hours ago | securityaffairs.co

addresses administrator breach breachforums +22

Critical Apache Log4j2 flaw still threatens global finance 21 hours ago | securityaffairs.co

analyst apache apache log4j2 breaking news +31

Crooks stole more than $300M worth of Bitcoin from the exchange DMM Bitcoin 23 hours ago | securityaffairs.co

bitcoin breaking news btc cryptocurrency +13

ShinyHunters is selling data of 30 million Santander customers 1 day, 16 hours ago | securityaffairs.co

actor bank breach breaking news +20

Over 600,000 SOHO routers were destroyed by Chalubo malware in 72 hours 2 days ago | securityaffairs.co

72 hours black lotus botnet breaking news +23

LilacSquid APT targeted organizations in the U.S., Europe, and Asia since at least 2021 2 days, 2 hours ago | securityaffairs.co

apt apt group asia attacks +19

BBC disclosed a data breach impacting its Pension Scheme members 2 days, 7 hours ago | securityaffairs.co

access bbc breach breaking news +25

CISA adds Check Point Quantum Security Gateways and Linux Kernel flaws to its Known Exploited … 2 days, 17 hours ago | securityaffairs.co

agency breaking news catalog check +31

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com