CVE-2023-2989

Published: Jun 22, 2023

Modified: Dec 5, 2024

PUBLISHED

Description

Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited

Vendor	Product	Versions
Fortra	Globalscape EFT	affected `8.0.0 - < 8.1.0.16`

Weaknesses (CWE)

CWE-125

References

https://www.rapid7.com/blog/post/2023/06/22/multiple-vulnerabilities-in-fortra-globalscape-eft-administration-server-fixed/

https://kb.globalscape.com/Knowledgebase/11586/Is-EFT-susceptible-to-the-Authentication-Bypass-via-Outofbounds-Memory-Read-vulnerability

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-2989

Description

Affected Products

Weaknesses (CWE)

References