FileCatalyst, a widely used file transfer platform, has recently announced that it has been breached. The incident has raised concerns about the security of sensitive data stored on the platform.
If these vulnerabilities are exploited, the consequences for an organisation include: filecatalyst+breached
March 18, 2024. A critical vulnerability in the Fortra FileCatalyst managed file transfer (MFT) service could enable remote code e... SC Media Critical Vulnerability in FileCatalyst Workflow (CVE-2024-5276) On June 25th, software company Fortra disclosed a critical severity vulnerability in their managed file transfer software applicat... Beazley Security CVE-2024-25153: RCE in Fortra FileCatalyst - LRQA Mar 13, 2024 — FileCatalyst, a widely used file transfer platform, has
For further technical details, you can view the Fortra Security Advisories or read the deep-dive analysis by LRQA Nettitude who discovered several of these flaws. A critical vulnerability in the Fortra FileCatalyst managed
A directory traversal flaw in the ftpservlet allows unauthenticated attackers to upload malicious JSP files to the web server's root. This grants them full control to execute commands and deploy web shells.