Skip to main content

Breaking cybersecurity news

Vulnerability database

EU vulnerability data

Hands-on web security training

Security incidents database

Knowledge library

Analytics & trends

Follow us

Professional cybersecurity intelligence

Breaking cybersecurity news

Vulnerability database

EU vulnerability data

Hands-on web security training

Security incidents database

Knowledge library

Analytics & trends

Follow us

About Sources Sponsored Articles Status Legal Terms

v2.3.3•© 2026

Telegram Bluesky GitHub Contact

Return to CVE list

CVE-2023-0669

KEV

Fortra GoAnywhere MFT Remote Code Execution Vulnerability

7.2

High

Published:6 Feb 2023

Last updated:17 Jun 2026

Source:cve@rapid7.com

Analyzed

Weakness (CWE)

CWE-502Deserialization of Untrusted Data

CVSS Vector

v3.1

Attack Vector: Network
Attack Complexity: Low
Privileges Required: High
User Interaction: None
Scope: Unchanged
Confidentiality: High
Integrity: High
Availability: High

View on MITRE Find PoC on GitHub

Known Exploited Vulnerability — CISA KEV

This vulnerability is in CISA's Known Exploited Vulnerabilities catalog, meaning it is actively exploited in the wild.

Added to catalog:: 10 Feb 2023
Remediation due:: 3 Mar 2023

View CISA KEV catalog

Description

Fortra (formerly, HelpSystems) GoAnywhere MFT suffers from a pre-authentication command injection vulnerability in the License Response Servlet due to deserializing an arbitrary attacker-controlled object. This issue was patched in version 7.1.2.

Exploits

513392023-04-08webappsJava

Goanywhere Encryption helper 7.1.1 - Remote Code Execution (RCE)

By Youssef Muhammad

References

cve@rapid7.com

http://packetstormsecurity.com/files/171789/Goanywhere-Encryption-Helper-7.1.1-Remote-Code-Execution.html

cve@rapid7.com

https://attackerkb.com/topics/mg883Nbeva/cve-2023-0669/rapid7-analysis

cve@rapid7.com

https://duo.com/decipher/fortra-patches-actively-exploited-zero-day-in-goanywhere-mft

cve@rapid7.com

https://frycos.github.io/vulns4free/2023/02/06/goanywhere-forgotten.html

cve@rapid7.com

https://github.com/rapid7/metasploit-framework/pull/17607

cve@rapid7.com

https://infosec.exchange/@briankrebs/109795710941843934

cve@rapid7.com

https://my.goanywhere.com/webclient/ViewSecurityAdvisories.xhtml#zerodayfeb1

cve@rapid7.com

https://www.rapid7.com/blog/post/2023/02/03/exploitation-of-goanywhere-mft-zero-day-vulnerability/

af854a3a-2127-422b-91ae-364da2661108

http://packetstormsecurity.com/files/171789/Goanywhere-Encryption-Helper-7.1.1-Remote-Code-Execution.html

af854a3a-2127-422b-91ae-364da2661108

https://attackerkb.com/topics/mg883Nbeva/cve-2023-0669/rapid7-analysis

af854a3a-2127-422b-91ae-364da2661108

https://duo.com/decipher/fortra-patches-actively-exploited-zero-day-in-goanywhere-mft

af854a3a-2127-422b-91ae-364da2661108

https://frycos.github.io/vulns4free/2023/02/06/goanywhere-forgotten.html

af854a3a-2127-422b-91ae-364da2661108

https://github.com/rapid7/metasploit-framework/pull/17607

af854a3a-2127-422b-91ae-364da2661108

https://infosec.exchange/@briankrebs/109795710941843934

af854a3a-2127-422b-91ae-364da2661108

https://my.goanywhere.com/webclient/ViewSecurityAdvisories.xhtml#zerodayfeb1

af854a3a-2127-422b-91ae-364da2661108

https://www.rapid7.com/blog/post/2023/02/03/exploitation-of-goanywhere-mft-zero-day-vulnerability/

134c704f-9b21-4f2e-91b3-4a467353bcc0

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-0669