CVE-2023-2990

CVE-2023-2990: Fortra Globalscape Administration Server Denial of Service

Vendor Fortra
Product Globalscape EFT
Weakness CWE-400
Published June 22, 2023
Last update December 4, 2024

CVSS base score

What the vulnerability does

01Description

Fortra Globalscape EFT versions before 8.1.0.16 suffer from a denial of service vulnerability, where a compressed message that decompresses to itself can cause infinite recursion and crash the service

Key dates

02Disclosure timeline

June 22, 2023 CVE published
December 4, 2024 Record updated