The vulnerability has been assigned a CVE ID CVE-2024-0204 , the severity level of the vulnerability is 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal. This can be leveraged to upload a JSP payload and achieve RCE.
versions
GoAnywhere MFT versions 6.x from 6.0.1, and 7.x before 7.4.1 are vulnerable.
Hello. I want to contribute to the tsunami scanner with a detector plugin to detect CVE-2024-0204 vulnerability
Reference
https://www.fortra.com/security/advisories/product-security/fi-2024-001 https://www.horizon3.ai/attack-research/attack-blogs/cve-2024-0204-fortra-goanywhere-mft-authentication-bypass-deep-dive/ https://www.cve.org/CVERecord?id=CVE-2024-0204
Description
The vulnerability has been assigned a CVE ID CVE-2024-0204 , the severity level of the vulnerability is 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Authentication bypass in Fortra's GoAnywhere MFT prior to 7.4.1 allows an unauthorized user to create an admin user via the administration portal. This can be leveraged to upload a JSP payload and achieve RCE.
versions
GoAnywhere MFT versions 6.x from 6.0.1, and 7.x before 7.4.1 are vulnerable.