CNNVD-202512-636 Information

CNNVD ID

CNNVD-202512-636

Related CVE

CVE-2025-8148

• CNNVD Published: 2025-12-05

Description (Chinese)

Fortra GoAnywhere MFT是美国Fortra公司的一款文件传输软件。 Fortra GoAnywhere MFT 7.9.0之前版本存在安全漏洞，该漏洞源于SFTP服务访问控制不当，可能导致Web用户使用SSH密钥登录。

Description (English)

Fortra Goanywhere MFT is a file transfer software of the United States company Fortra. There was a security loophole in the pre-Fortra Goanywhere MFT 7.90, which stemmed from inadequate access controls of the SFTP service, which could result in Web users using SSH keys to log in.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Fortra

Published

2025-12-05

Last Modified

2026-02-24

References

https://www.fortra.com/security/advisories/product-security/fi-2025-013 https://access.redhat.com/security/cve/cve-2025-8148

Patch

https://www.goanywhere.com/