PT-2024-39958 · Fortra · Goanywhere Mft
Xiao Xiong
·
Published
2024-12-13
·
Updated
2024-12-13
·
CVE-2024-9945
CVSS v3.1
5.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Fortra's GoAnywhere MFT versions prior to 7.7.0
Description
An information-disclosure issue exists in Fortra's GoAnywhere MFT application that allows external access to resources in certain admin root folders. By default, these folders typically do not contain sensitive data.
Recommendations
For versions prior to 7.7.0, update to version 7.7.0 or higher to resolve the issue.
Fix
Information Disclosure
Files Accessible to External Parties
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Goanywhere Mft