"PoC for Easily Exploitable Fortra GoAnywhere MFT Vulnerability Released"

Proof-of-Concept (PoC) exploit code for a critical vulnerability, tracked as CVE-2024-0204, in Fortra's GoAnywhere Managed File Transfer (MFT) solution has been made public, raising concerns that attackers will soon exploit it. Organizations of various sizes widely use Fortra's GoAnywhere MFT solution. In early 2023, the Cl0P ransomware gang used a zero-day vulnerability, tracked as CVE-2023-0669, in the same solution to exfiltrate data from more than 130 victim organizations. Following the exfiltration, the group threatened to publish the data unless they were paid not to. This article continues to discuss the CVE-2024-0204 authentication bypass vulnerability and the PoC made available for it.

Help Net Security reports "PoC for Easily Exploitable Fortra GoAnywhere MFT Vulnerability Released"

Submitted by grigby1

Submitted by Gregory Rigby on