Released March 4, 2026, which includes a patch for CVE-2025-15467.
An out-of-bounds memory read flaw that allows attackers to potentially bypass authentication or crash the service. In certain scenarios, this could lead to full system takeover. globalscape terms patched
Follow the direct Upgrade Paths recommended by Globalscape. For example, older 7.x versions must typically upgrade to 8.0.2 before they can reach the latest 8.3 builds. Released March 4, 2026, which includes a patch
Recent security audits by organizations like Rapid7 have uncovered several high-impact vulnerabilities in the Globalscape administration server. If your system is not running at least version , it may be vulnerable to the following: Follow the direct Upgrade Paths recommended by Globalscape
A Denial of Service (DoS) vulnerability involving "recursive compression." Attackers can send a specially crafted packet that causes the server to crash by exhausting its stack memory.
Ensure "Remote Administration" (default port 1100) is configured to use SSL to prevent credential sniffing. Globalscapehttps://kb.globalscape.com Officially Supported Products and EOL Dates
Versions earlier than 8.0.x are largely End of Life (EOL) and no longer receive security updates.