VYPR
Unrated severityNVD Advisory· Published Mar 14, 2024· Updated Aug 1, 2024

Path traversal in GoAnywhere MFT 7.4.1 and Earlier

CVE-2024-25156

Description

A path traversal vulnerability exists in GoAnywhere MFT prior to 7.4.2 which allows attackers to circumvent endpoint-specific permission checks in the GoAnywhere Admin and Web Clients.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.