Security Advisory

CVE-2026-1089

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-21 14:14:58

Last updated 2026-04-21 15:00:35

Assigner Fortra

State PUBLISHED

Description

User‑Controlled HTTP Header in Fortras GoAnywhere MFT prior to version 7.10.0 allows attackers to trigger a DNS lookup, as well as DNS Rebinding and Information Disclosure.

← Browse all CVEs View on cve.org ↗