App database tampering likely with critical Fortra FileCatalyst Workflow bug

28 June 2024

Both authenticated and unauthenticated users could leverage the vulnerability, which affects FileCatalyst Workflow versions 5.1.6 Build 135 and earlier, although activation of anonymous access within the Workflow system is needed for successful exploitation by the latter, said Fortra in an advisory. Immediate implementation of an issued update was urged but Fortra noted that several impacted servlets within the Apache Tomcat installation directory’s “web.xml”

Source: SC Magazine

Date:

28 June 2024

Categorie(s):

NEWS

Tag(s):

Apps, Fortra, IT, Mobile, Workflows

Canada Arrests Suspected Hacker Linked to Snowflake Data Breaches5 November 2024
Amazon Inspector suppression rules best practices for AWS Organizations5 November 2024
Building Cybersecurity Resilience: Strategies, Technologies, and Best Practices from Industry Leaders5 November 2024
Criminals open DocuSign’s Envelope API to make BEC special delivery5 November 2024
Link Index for Customer Identity and Access Management5 November 2024