Fortra has issued security updates for GoAnywhere MFT to fix a critical deserialization vulnerability (CVE-2025-10035) that allows remote command injection, especially affecting systems with publicly accessible Admin Consoles. While exploitation hasn’t been confirmed, organizations are urged to apply patches immediately to prevent potential attacks from threat groups like Clop. #CVE-2025-10035 #GoAnywhereMFT #Clop
Keypoints
- Fortra released security patches for a high-severity vulnerability in GoAnywhere MFT.
- The flaw involves deserialization of untrusted data that can lead to command injection.
- Systems with exposed Admin Consoles over the internet are particularly vulnerable.
- Threat actors have historically targeted GoAnywhere MFT, including the Clop ransomware gang.
- Organizations are advised to update to version 7.8.4 or 7.6.3 and secure Admin Console access immediately.