Information Disclosure Vulnerability in Fortra's GoAnywhere MFT Application
CVE-2024-9945

Currently unrated

Key Information:

Vendor: Fortra
Status: GoAnywhere MFT
Vendor: CVE Published:; 13 December 2024

Summary

An information disclosure vulnerability has been identified in Fortra's GoAnywhere MFT application that allows unauthorized external access to sensitive resources located within certain admin root folders. This flaw affects versions prior to 7.7.0, posing a risk of exposing critical data to potential attackers. Users are advised to upgrade to the latest version to mitigate this vulnerability and safeguard their systems.

References

https://www.fortra.com/security/advisories/product-securi...

Timeline

Vulnerability published
Dec 13, 2024