CVE ID : CVE-2025-8148
Published : Dec. 5, 2025, 9:15 p.m. | 1 hour, 50 minutes ago
Description : An Improper Access Control in the SFTP service in Fortra’s GoAnywhere MFT prior to version 7.9.0 allows Web Users with an Authentication Alias and a valid SSH key but limited to Password authentication for SFTP to still login using their SSH key.
Severity: 4.2 | MEDIUM
Visit the link for more details, such as CVSS details, affected products, timeline, and more…