GCVE - cpe:2.3:a:fortra:globalscape_eft:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:fortra:globalscape_eft:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Fortra (`f14f6bd1-8bf2-53f9-b0d6-b2745f517ba7`)
Product	Globalscape Eft (`bdea7b57-de9f-50cc-b643-f7937dc92b26`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2023-2991`	vulnerable	2026-06-03 14:51:44.776638	Fortra Globalscape Administration Server Information Disclosure Fortra Globalscape EFT's administration server suffers from an information disclosure vulnerability where the serial number of the harddrive that Globalscape is installed on can be remotely determined via a "trial extension request" message Published: 2023-06-22T19:22:24.434Z Updated: 2024-12-06T15:12:53.692Z Open on db.gcve.eu Reference links https://www.rapid7.com/blog/post/2023/06/22/multiple-vulnerabilities-in-fortra-globalscape-eft-administration-server-fixed/ https://kb.globalscape.com/Knowledgebase/11589/Is-EFT-susceptible-to-the-Remotely-obtain-HDD-serial-number-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-2990`	vulnerable	2026-06-03 14:51:44.776308	Fortra Globalscape Administration Server Denial of Service Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service Published: 2023-06-22T19:17:28.531Z Updated: 2024-12-04T21:34:07.241Z Open on db.gcve.eu Reference links https://www.rapid7.com/blog/post/2023/06/22/multiple-vulnerabilities-in-fortra-globalscape-eft-administration-server-fixed/ https://kb.globalscape.com/Knowledgebase/11588/Is-EFT-susceptible-to-the-Denial-of-service-via-recursive-Deflate-Stream-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2023-2989`	vulnerable	2026-06-03 14:51:44.773390	Fortra Globalscape Administration Server Out of Bounds Memory Read Fortra Globalscape EFT versions before 8.1.0.16 suffer from an out of bounds memory read in their administration server, which can allow an attacker to crash the service or bypass authentication if successfully exploited Published: 2023-06-22T19:14:17.275Z Updated: 2024-12-05T17:41:57.318Z Open on db.gcve.eu Reference links https://www.rapid7.com/blog/post/2023/06/22/multiple-vulnerabilities-in-fortra-globalscape-eft-administration-server-fixed/ https://kb.globalscape.com/Knowledgebase/11586/Is-EFT-susceptible-to-the-Authentication-Bypass-via-Outofbounds-Memory-Read-vulnerability	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.