CVE-2024-0204
Authentication Bypass in GoAnywhere MFT
In short
A flaw in GoAnywhere MFT before version 7.4.1 lets someone without permission create an administrator account through the admin portal, bypassing normal login requirements.
Technical detail
This authentication bypass (CWE-425) in GoAnywhere MFT's administration portal allows an unauthenticated attacker to create admin-level user accounts without valid credentials. The vulnerability affects versions prior to 7.4.1 and results in complete compromise of system access controls and administrative privileges.
Summary generated and translated by AI from the official description.
Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Fortra · GoAnywhere MFTpublic PoCs found — 8
githubgithub.com/horizon3ai/CVE-2024-0204★ 65githubgithub.com/cbeek-r7/CVE-2024-0204★ 4githubgithub.com/ibrahmsql/CVE-2024-0204★ 2githubgithub.com/m-cetin/CVE-2024-0204★ 2githubgithub.com/adminlove520/CVE-2024-0204★ 1exploitdbwww.exploit-db.com/exploits/52308unverifiedcve_referencepacketstormsecurity.com/files/176974/Fortra-GoAnywhere-MFT-Unauthenticated-Remote-Code-Execution.htmlunverifiedcve_referencepacketstormsecurity.com/files/176683/GoAnywhere-MFT-Authentication-Bypass.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/176683/GoAnywhere-MFT-Authentication-Bypass.htmlhttp://packetstormsecurity.com/files/176974/Fortra-GoAnywhere-MFT-Unauthenticated-Remote-Code-Execution.htmlhttps://my.goanywhere.com/webclient/ViewSecurityAdvisories.xhtmlhttps://www.fortra.com/security/advisory/fi-2024-001