CVE-2023-0669

Fortra (formerly, HelpSystems) GoAnywhere MFT contains a pre-authentication remote code execution vulnerability in the License Response Servlet due to deserializing an attacker-controlled object. Vendor/Product: Fortra GoAnywhere MFT. Added to CISA KEV 2023-02-10; required action: Apply updates per vendor instructions.