CVE-2021-46830

Name of the Vulnerable Software and Affected Versions GoAnywhere MFT versions prior to 6.8.3

Description A path traversal issue exists that could allow an external user who self-registers with specific username and/or profile information to access files at a higher directory level than intended. This issue is related to the self-registration feature for the GoAnywhere Web Client.

Recommendations For versions prior to 6.8.3, update to version 6.8.3 or later to resolve the issue. As a temporary workaround, consider restricting self-registration or limiting access to sensitive files until the update is applied.