Unrated severityNVD Advisory· Published Jan 22, 2024· Updated May 30, 2025
Authentication Bypass in GoAnywhere MFT
CVE-2024-0204
Description
Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2<7.4.1+ 1 more
- (no CPE)range: <7.4.1
- (no CPE)range: 6.0.1
Patches
Vulnerability mechanics
References
4- www.fortra.com/security/advisory/fi-2024-001mitrevendor-advisory
- my.goanywhere.com/webclient/ViewSecurityAdvisories.xhtmlmitrepermissions-required
- packetstormsecurity.com/files/176683/GoAnywhere-MFT-Authentication-Bypass.htmlmitre
- packetstormsecurity.com/files/176974/Fortra-GoAnywhere-MFT-Unauthenticated-Remote-Code-Execution.htmlmitre
News mentions
0No linked articles in our index yet.