all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Exploit released for Fortra GoAnywhere MFT auth bypass bug

Add to bookmarks
Jan. 23, 2024, 11:16 p.m. | Sergiu Gatlan

BleepingComputer www.bleepingcomputer.com

Exploit code is now available for a critical authentication bypass vulnerability in Fortra's GoAnywhere MFT (Managed File Transfer) software that allows attackers to create new admin users on unpatched instances via the administration portal. [...]

admin administration attackers auth authentication authentication bypass bug bypass bypass vulnerability code critical exploit exploit code file file transfer fortra fortra goanywhere goanywhere goanywhere mft managed managed file transfer mft portal security software transfer unpatched vulnerability

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

HPE Aruba Networking fixes four critical RCE flaws in ArubaOS 7 hours ago | www.bleepingcomputer.com
advisory april aruba arubaos +17
DropBox says hackers stole customer data, auth secrets from eSignature service 7 hours ago | www.bleepingcomputer.com
access auth authentication breached +21
US govt warns of pro-Russian hacktivists targeting water facilities 10 hours ago | www.bleepingcomputer.com
critical critical infrastructure disrupt government +16
Panda Restaurants discloses data breach after corporate systems hack 12 hours ago | www.bleepingcomputer.com
attackers breach compromised corporate +14
French hospital CHC-SV refuses to pay LockBit extortion demand 13 hours ago | www.bleepingcomputer.com
demand extortion france french +12
CISA says GitLab account takeover bug is actively exploited in attacks 13 hours ago | www.bleepingcomputer.com
account accounts account takeover actively exploited +14
Microsoft: April Windows Server updates cause NTLM auth failures 14 hours ago | www.bleepingcomputer.com
april auth authentication customer +13
Microsoft says April Windows updates break VPN connections 16 hours ago | www.bleepingcomputer.com
april connections microsoft security +11
Qantas app exposed sensitive traveler details to random users 16 hours ago | www.bleepingcomputer.com
airways app customers exposed +7

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Senior Software Engineer, Security

@ Niantic | Zürich, Switzerland
View on infosec-jobs.com

Consultant expert en sécurité des systèmes industriels (H/F)

@ Devoteam | Levallois-Perret, France
View on infosec-jobs.com

Cybersecurity Analyst

@ Bally's | Providence, Rhode Island, United States
View on infosec-jobs.com

Digital Trust Cyber Defense Executive

@ KPMG India | Gurgaon, Haryana, India
View on infosec-jobs.com

Program Manager - Cybersecurity Assessment Services

@ TestPros | Remote (and DMV), DC
View on infosec-jobs.com
View more jobs