Vulnerabilities (CVE)

Filtered by vendor Globalscape Subscribe
Filtered by product Eft Server
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-2989 1 Globalscape 1 Eft Server 2024-02-28 N/A 9.1 CRITICAL
Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited
CVE-2023-2991 1 Globalscape 1 Eft Server 2024-02-28 N/A 5.3 MEDIUM
Fortra Globalscape EFT's administration server suffers from an information disclosure vulnerability where the serial number of the harddrive that Globalscape is installed on can be remotely determined via a "trial extension request" message
CVE-2023-2990 1 Globalscape 1 Eft Server 2024-02-28 N/A 7.5 HIGH
Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service