Security News > 2024 > January > Patch Your GoAnywhere MFT Immediately - Critical Flaw Lets Anyone Be Admin

Patch Your GoAnywhere MFT Immediately - Critical Flaw Lets Anyone Be Admin
2024-01-24 05:32

A critical security flaw has been disclosed in Fortra's GoAnywhere Managed File Transfer (MFT) software that could be abused to create a new administrator user. Tracked as CVE-2024-0204, the issue carries a CVSS score of 9.8 out of 10. "Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal," Fortra&


News URL

https://thehackernews.com/2024/01/patch-your-goanywhere-mft-immediately.html

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2024-01-22 CVE-2024-0204 Forced Browsing vulnerability in Fortra Goanywhere Managed File Transfer
Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.
network
low complexity
fortra CWE-425
critical
 9.8
9.8