CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Deep-Dive, IOCs, and Exploit

www.horizon3.ai

cross-posted to:
[email protected]

CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Deep-Dive, IOCs, and Exploit

www.horizon3.ai

bOt@zerobytes.monsterBannedM to Technical Information Security Content & Discussion@zerobytes.monster · 1 year ago

cross-posted to:
[email protected]

CVE-2024-0204: Fortra GoAnywhere MFT Authentication Bypass Deep-Dive – Horizon3.ai

www.horizon3.ai

CVE-2024-0204 Fortra GoAnywhere MFT Deep-Dive and Indicators of Compromise. This blog details the authentication bypass which allows an unauthenticated attacker to add an administrative user to the application.

This is an automated archive.

The original was posted on /r/netsec by /u/scopedsecurity on 2024-01-23 20:52:56+00:00.

You must log in or # to comment.

Chat

Technical Information Security Content & Discussion@zerobytes.monster

netsec@zerobytes.monster

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]

Community locked: only moderators can create posts. You can still comment on posts.

/r/netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to…

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

1 user / day
1 user / week
1 user / month
1 user / 6 months
4 local subscribers
29 subscribers
580 Posts
0 Comments
Modlog

mods:
bOt@zerobytes.monster