"Urgent Patch Required: Fortra GoAnywhere MFT Vulnerability Exploited"

January 23, 2024 at 03:41 PM

•

1 min read

"Urgent Patch Required: Fortra GoAnywhere MFT Vulnerability Exploited" — Photo: BleepingComputer

TL;DR Summary

Fortra warns of a critical authentication bypass vulnerability, CVE-2024-0204, in GoAnywhere MFT versions before 7.4.1, allowing unauthorized creation of admin users. The flaw, discovered in December 2023, could lead to device takeover and data breaches. Fortra advises immediate patching to version 7.4.1 and provides manual mitigation steps. While no active exploitation has been reported, the potential for PoC exploits exists. This follows a previous incident where the Clop ransomware gang exploited a different flaw in GoAnywhere MFT, causing widespread data theft attacks on numerous organizations.

Topics:technology #authentication-bypass #cve-2024-0204 #cybersecurity #fortra #goanywhere-mft #ransomware

Share this article

Fortra warns of new critical GoAnywhere MFT auth bypass, patch now BleepingComputer
Exploit released for Fortra GoAnywhere MFT auth bypass bug BleepingComputer

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

81%

458 → 85 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights