We discovered a (blind) out-of-bounds memory read in the Globalscape EFT admin server that allows a specially crafted message to p... Rapid7 EFT - Fortra Fixes. EFT Administration. Patched CVE-2025-15467 by upgrading EFT's OpenSSL library to v3.6.1. Fixed an issue where the subject l... Fortra Is EFT susceptible to the "Password Leak Due to Insecure ... EFT v8. x and 8.1. 0.14. This is fixed in v8. 1.0. 16. QUESTION. Is EFT susceptible to the "Password Leak Due to Insecure Defaults... Globalscape Globalscape Eft Server security vulnerabilities, CVEs, versions ... Top open port discovered on systems running Eft Server 22. IPs running Eft Server 832. Threat actors targeting Eft Server? Yes. Fi... CVE Details Globalscape EFT Protects Company From Ransomware Attacks GLOBALSCAPE EFT™ PROTECTS FORTUNE 100 COMPANY FROM FUTURE RANSOMWARE ATTACKS. A global Fortune 100 company based out of the U.S. a... Globalscape Hackers Hit Secure File Transfer Software Again and Again Oct 20, 2023 —
Legal obligations vary by region and industry. globalscape+leak
This vulnerability allowed remote attackers to determine the serial number of the hard drive where Globalscape was installed via a "trial extension request". We discovered a (blind) out-of-bounds memory read in
Before reacting, verify that a leak has occurred and determine the scope. Patched CVE-2025-15467 by upgrading EFT's OpenSSL library to
The focus on "Globalscape leaks" is part of a larger trend where Managed File Transfer (MFT) solutions have become prime targets for cybercriminals.