Mandiant reported a vulnerability in Servlet in Fortra GoAnywhere. GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object.

For a complete description of the vulnerabilities and affected systems go to CVE-2023-0669 Detail.

IT Security

Read more about IT Security service offerings.