Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2025-1241
Analyzed
More InfoOfficial Page
Source-df4dee71-de3a-4139-9588-11b62fe6c0ff
View Known Exploited Vulnerability (KEV) details
Published At-21 Apr, 2026 | 15:16
Updated At-23 Apr, 2026 | 14:12

Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.15.8MEDIUM
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
Primary3.14.9MEDIUM
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Type: Secondary
Version: 3.1
Base score: 5.8
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
Type: Primary
Version: 3.1
Base score: 4.9
Base severity: MEDIUM
Vector:
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
CPE Matches

Fortra LLC
fortra
>>goanywhere_agents>>Versions before 2.2.0(exclusive)
cpe:2.3:a:fortra:goanywhere_agents:*:*:*:*:*:*:*:*
Fortra LLC
fortra
>>goanywhere_managed_file_transfer>>Versions before 7.10.0(exclusive)
cpe:2.3:a:fortra:goanywhere_managed_file_transfer:*:*:*:*:*:*:*:*
Apple Inc.
apple
>>macos>>-
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
Linux Kernel Organization, Inc
linux
>>linux_kernel>>-
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
Microsoft Corporation
microsoft
>>windows>>-
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-326Secondarydf4dee71-de3a-4139-9588-11b62fe6c0ff
CWE ID: CWE-326
Type: Secondary
Source: df4dee71-de3a-4139-9588-11b62fe6c0ff
Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References
HyperlinkSourceResource
https://fortra.com/security/advisories/product-security/FI-2026-001df4dee71-de3a-4139-9588-11b62fe6c0ff
Vendor Advisory
Hyperlink: https://fortra.com/security/advisories/product-security/FI-2026-001
Source: df4dee71-de3a-4139-9588-11b62fe6c0ff
Resource:
Vendor Advisory
Change History
0Changes found

Details not found