Exploit for #VU71774 Deserialization of Untrusted Data in GoAnywhere MFT
Vulnerability identifier: #VU71774
Vulnerability risk: Critical
CVSSv3.1: 9.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:H/RL:O/RC:C]
CVE-ID:
CWE-ID:
CWE-502
Exploitation vector: Network
Exploits in database: 2
- February 9, 2023
- Fortra GoAnywhere MFT Unsafe Deserialization RCE [Metasploit]
- February 7, 2023
- GoAnywhere MFT - A Forgotten Bug [Custom exploits]
Impact: Code execution
Vulnerable software:
GoAnywhere MFT
Server applications /
Remote access servers, VPN
Vendor: Fortra
