CVE-2024-25157

Name of the Vulnerable Software and Affected Versions GoAnywhere MFT versions prior to 7.6.0

Description An authentication bypass issue allows Admin Users with access to the Agent Console to circumvent some permission checks, potentially leading to unauthorized information disclosure or modification.

Recommendations For versions prior to 7.6.0, update to version 7.6.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the Agent Console for Admin Users to minimize the risk of exploitation.