Vulnerabilities

CVE-2025-10035

by Fred · 18/09/2025

A deserialization vulnerability in the License Servlet of Fortra’s GoAnywhere MFT allows an actor with a validly forged license response signature to deserialize an arbitrary actor-controlled object, possibly leading to command injection.

More information : https://www.fortra.com/security/advisories/product-security/fi-2025-012

Similar

Tags: Cybersecurity Alert