Vulnerability Details CVE-2025-1241
Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 5.7%
CVSS Severity
CVSS v3 Score 5.8
Products affected by CVE-2025-1241
-
cpe:2.3:a:fortra:goanywhere_agents:1.3.2
-
cpe:2.3:a:fortra:goanywhere_agents:1.4.0
-
cpe:2.3:a:fortra:goanywhere_agents:1.4.1
-
cpe:2.3:a:fortra:goanywhere_agents:1.4.2
-
cpe:2.3:a:fortra:goanywhere_agents:1.5.0
-
cpe:2.3:a:fortra:goanywhere_agents:1.6.0
-
cpe:2.3:a:fortra:goanywhere_agents:1.6.1
-
cpe:2.3:a:fortra:goanywhere_agents:1.6.2
-
cpe:2.3:a:fortra:goanywhere_agents:1.6.3
-
cpe:2.3:a:fortra:goanywhere_agents:1.6.4
-
cpe:2.3:a:fortra:goanywhere_agents:1.6.5
-
cpe:2.3:a:fortra:goanywhere_agents:1.7.0
-
cpe:2.3:a:fortra:goanywhere_agents:1.7.1
-
cpe:2.3:a:fortra:goanywhere_agents:1.7.2
-
cpe:2.3:a:fortra:goanywhere_agents:2.0.0
-
cpe:2.3:a:fortra:goanywhere_agents:2.1.0
-
cpe:2.3:a:fortra:goanywhere_agents:2.1.1
-
cpe:2.3:a:fortra:goanywhere_agents:2.1.2
-
cpe:2.3:a:fortra:goanywhere_agents:2.1.3
-
cpe:2.3:a:fortra:goanywhere_agents:2.1.4
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:-
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:6.0.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.0.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.0.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.0.2
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.0.3
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.1.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.1.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.1.2
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.1.3
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.2.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.2.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.3.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.3.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.4.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.4.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.4.2
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.5.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.5.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.5.2
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.5.3
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.6.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.6.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.6.2
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.6.3
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.7.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.7.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.8.0
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.8.1
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.8.2
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.8.3
-
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:7.8.4
-
cpe:2.3:o:apple:macos:-
-
cpe:2.3:o:linux:linux_kernel:-
-
cpe:2.3:o:microsoft:windows:-