Topic: cve-2025-10035

Sort by: Relevance | Date
  • Fortra GoAnywhere MFT Zero-Day Actively Exploited
    September 27, 2025
    98%

    Fortra GoAnywhere MFT Zero-Day Actively Exploited

    A critical vulnerability (CVE-2025-10035) in Fortra's GoAnywhere MFT was exploited for over a week before a patch was released on September 18, 2025, allowing attackers to achieve remote code execution. The flaw, a deserialization vulnerability with a CVSS score of 10.0, enabled threat actors to ...

    Read More »
  • Unpatched Fortra GoAnywhere Flaw Risks Full System Takeover
    September 25, 2025
    97%

    Unpatched Fortra GoAnywhere Flaw Risks Full System Takeover

    A critical vulnerability (CVE-2025-10035) in Fortra's GoAnywhere MFT platform allows full system takeover via a deserialization flaw in the License servlet, requiring immediate patching. Exploitation necessitates access to the admin console, echoing a 2023 incident where exposed consoles led to w...

    Read More »
  • Fortra Issues Critical Alert for GoAnywhere MFT Vulnerability
    September 20, 2025
    90%

    Fortra Issues Critical Alert for GoAnywhere MFT Vulnerability

    Fortra has issued an urgent alert for a critical vulnerability (CVE-2025-10035) in GoAnywhere MFT software, allowing remote command injection due to unsafe data deserialization. The vulnerability can be exploited without user interaction, particularly affecting internet-exposed Admin Consoles, an...

    Read More »

Related Topics

patch management (25) remote exploitation (6) internet exposure (3) admin console (2) cybersecurity threats (37) remote code execution (35) vulnerability exploitation (22) security updates (18)