CVE-2023-0669 Scanner
Detects 'Remote Code Execution (RCE)' vulnerability in Fortra GoAnywhere MFT affects v. through 7.1.1.
Short Info
Level
High
Single Scan
Single Scan
Can be used by
Asset Owner
Estimated Time
10 sec
Scan only one
Domain, Ipv4
Toolbox
-
Fortra (formerly, HelpSystems) GoAnywhere MFT is a managed file transfer solution designed for businesses that need secure file transfer and file sharing capabilities. It provides a centralized control panel for file transfers, encryption, compression, and monitoring, making it a comprehensive solution for enterprises that handle sensitive data. It is used across various industries, such as finance, healthcare, retail, and manufacturing.
However, a pre-authentication command injection vulnerability in the License Response Servlet was discovered in the Fortra GoAnywhere MFT, assigned CVE-2023-0669. The vulnerability is caused by the deserialization of an arbitrary attacker-controlled object. This action can be exploited by an attacker to execute arbitrary code remotely without proper authentication measures. Successful exploitation of this vulnerability could provide unauthorized access to management and encryption keys, leading to the compromise of sensitive data. The vulnerability poses a significant threat to businesses relying on the Fortra GoAnywhere MFT solution.
When exploited, CVE-2023-0669 allows an attacker to execute code remotely, leading to tampering with the intended behavior of the software, the ability to read and modify data contained within the system, total system compromise or control, and the escalation of privileges. The intrusion can ultimately result in the theft or destruction of sensitive data, loss of business reputation, and revenue loss.
In conclusion, businesses that rely on the Fortra GoAnywhere MFT solution must take immediate measures to protect themselves against CVE-2023-0669. At securityforeveryone.com, we pride ourselves on providing cutting-edge cybersecurity solutions. Thanks to our pro features, readers can quickly and easily learn about vulnerabilities in their digital assets and stay up-to-date on the latest trends in the cybersecurity industry. Trust us to keep your digital enterprise secure, so you can focus on growth and success.
REFERENCES
- https://attackerkb.com/topics/mg883Nbeva/cve-2023-0669/rapid7-analysis
- https://duo.com/decipher/fortra-patches-actively-exploited-zero-day-in-goanywhere-mft
- https://frycos.github.io/vulns4free/2023/02/06/goanywhere-forgotten.html
- https://github.com/rapid7/metasploit-framework/pull/17607
- https://infosec.exchange/@briankrebs/109795710941843934
- https://my.goanywhere.com/webclient/ViewSecurityAdvisories.xhtml#zerodayfeb1
- https://www.rapid7.com/blog/post/2023/02/03/exploitation-of-goanywhere-mft-zero-day-vulnerability/
control security posture