by vicarius
log in join community
by @jakaba
21 Mar 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Fortra GoAnywhere MFT - Auth bypass (CVE-2024-0204)

by @jakaba
by @jakaba
21 Mar 2024
#cve_analysis

Write a blog analysis for a CVE

publish

Fortra GoAnywhere MFT - Auth bypass (CVE-2024-0204)

CVEs

CVE-2024-0204
9.8 Critical Severity

Apps

Goanywhere Managed File Transfer
Goanywhere Managed File TransferFortra
*.*
7.5.1.*
7.5.2.*
7.5.3.*
7.5.0.*
7.4.0.*
7.2.1.*
7.1.0.*
7.4.1.*
7.3.1.*

Screenshots from the blog posts

images/cltyh0y3eljbi1jk45iul0ev3.jpgimages/cltyh0y3eljbi1jk45iul0ev3.jpg

Summary

CVE-2024-0204 allows an unauthenticated attacker to bypass authentication mechanisms and create an administrative user within the GoAnywhere MFT platform.

Description

Tags

#path_traversal#account_bypass#Authentication#trending#CVE-2024-0204
users/photos/clj8b3h1k16g10uoihwvzgsxi.png

@jakaba

74 posts

Total vcoins

64.3K

Social media links

Comments (0)