Security News > 2024 > March > Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool
![Fortra Patches Critical RCE Vulnerability in FileCatalyst Transfer Tool](/static/build/img/news/fortra-patches-critical-rce-vulnerability-in-filecatalyst-transfer-tool-medium.jpg)
2024-03-18 12:58
Fortra has released details of a now-patched critical security flaw impacting its FileCatalyst file transfer solution that could allow unauthenticated attackers to gain remote code execution on susceptible servers. Tracked as CVE-2024-25153, the shortcoming carries a CVSS score of 9.8 out of a maximum of 10. "A directory traversal within the 'ftpservlet' of the FileCatalyst Workflow
News URL
https://thehackernews.com/2024/03/fortra-patches-critical-rce.html
Related news
- VMware fixes critical vCenter RCE vulnerability, patch now (source)
- Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool (source)
- Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application (source)
- PHP fixes critical RCE flaw impacting all versions for Windows (source)
- Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability (source)
- Critical RCE flaws in vCenter Server fixed (CVE-2024-37079, CVE-2024-37080) (source)
- Week in review: CDK Global cyberattack, critical vCenter Server RCE fixed (source)
- Exploit for critical Fortra FileCatalyst Workflow SQLi flaw released (source)
- PoC exploit for critical Fortra FileCatalyst flaw published (CVE-2024-5276) (source)
- GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others (source)