Unrated severityNVD Advisory· Published Mar 14, 2024· Updated Aug 1, 2024
Path traversal in GoAnywhere MFT 7.4.1 and Earlier
CVE-2024-25156
Description
A path traversal vulnerability exists in GoAnywhere MFT prior to 7.4.2 which allows attackers to circumvent endpoint-specific permission checks in the GoAnywhere Admin and Web Clients.
Affected products
2<7.4.2+ 1 more
- (no CPE)range: <7.4.2
- (no CPE)range: 6.0.1
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.