Vulnerabilities

CVE-2024-0204

by Fred · 22/01/2024

Authentication bypass in Fortra’s GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.

More information : http://packetstormsecurity.com/files/176683/GoAnywhere-MFT-Authentication-Bypass.html

Attack vector : NETWORK
Attack complexity : LOW
Privileges required : NONE
User interaction : NONE
Confidentiality impact : HIGH
Integrity impact : HIGH
Base score : 9.8
Base severity : CRITICAL
Exploitability score : 3.9
Impact score : 5.9

Similar

Tags: Cybersecurity Alert