2025-09-18 22:01:51
Fortra
PUBLISHED
A deserialization vulnerability in the License Servlet of Fortras GoAnywhere MFT allows an actor with a validly forged license response signature to deserialize an arbitrary actor-controlled object, possibly leading to command injection.