Security Advisory

CVE-2024-25156

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-03-14 14:06:01
Last updated 2024-08-01 23:36:21
Assigner Fortra
State PUBLISHED

Description

A path traversal vulnerability exists in GoAnywhere MFT prior to 7.4.2 which allows attackers to circumvent endpoint-specific permission checks in the GoAnywhere Admin and Web Clients.