all InfoSec news
CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Vulnerability
Cyber Exposure Alerts www.tenable.com
Proof-of-concept exploit details are available for a newly disclosed critical vulnerability in Fortra GoAnywhere Managed File Transfer (MFT), a product historically targeted by ransomware
Background
On January 22, Fortra (formerly HelpSystems) published a security advisory (FI-2024-001) for a critical vulnerability in GoAnywhere, its managed file transfer (MFT) software.
CVEDescriptionCVSSv3CVE-2024-0204Fortra GoAnywhere MFT Authentication Bypass Vulnerability9.8According to the advisory, it was discovered on December 1, 2023. Its discovery is credited to security researchers Mohammed Eldeeb and Islam …
advisory authentication authentication bypass bypass bypass vulnerability concept critical critical vulnerability cve exploit file file transfer fortra fortra goanywhere goanywhere goanywhere mft helpsystems january managed managed file transfer mft product proof proof-of-concept security security advisory software transfer vulnerability