How severe is CVE-2024-25157?

CVE-2024-25157 has a CVSS v3 score of 6.5 (MEDIUM).

CVE-2024-25157

Name: goanywhere_managed_file_transfer
Author: fortra

6.5MEDIUM

An authentication bypass vulnerability in GoAnywhere MFT prior to 7.6.0 allows Admin Users with access to the Agent Console to circumvent some permission checks when attempting to visit other pages. T

Опубликовано: 8/14/2024Обновлено: 8/19/2024

Описание

An authentication bypass vulnerability in GoAnywhere MFT prior to 7.6.0 allows Admin Users with access to the Agent Console to circumvent some permission checks when attempting to visit other pages. This could lead to unauthorized information disclosure or modification.

ИИ-АнализНа базе ИИ

Затронутые продукты

fortragoanywhere_managed_file_transfer

Ссылки

https://www.fortra.com/security/advisories/product-security/fi-2024-009
Vendor Advisory