| Product | Affected Versions | Patched Version | | :--- | :--- | :--- | | EFT Server | 8.0.0 – 8.3.4 | 8.3.5 | | EFT DMZ Gateway | 4.0.0 – 4.2.0 | 4.2.1 | | Globalscape WAFS | 5.1.x | 5.2 (re-issued) |
Understanding when patches stop is critical for security compliance: End of Life (EOL) globalscape terms patched
Globalscape Enhanced File Transfer (EFT) is a cornerstone of secure data exchange for enterprise networks worldwide. However, like any complex software suite, it has faced critical security vulnerabilities over the years that could allow malicious actors to compromise sensitive file transfer workflows. | Product | Affected Versions | Patched Version
Globalscape has released a critical April 2026 update (Version 8.3.2.569) for its EFT platform to patch high-priority vulnerabilities affecting encryption, DMZ connection stability, and OpenSSL libraries. These updates address file corruption risks and security gaps to maintain compliance standards for organizations handling sensitive data. Read the full release notes at Fortra . EFT - Fortra These updates address file corruption risks and security
: Patched alongside the authentication flaw, this vulnerability allowed a remote attacker to cause infinite recursion and a service crash by sending a specially crafted "compressed message" that decompressed into itself.
Simultaneously patched alongside the authentication bypass, this vulnerability involved a core Denial of Service flaw. Attackers could transmit a strategically malformed, recursive Deflate data stream to exhaust server memory resources. This flaw was mitigated across enterprise systems via the same summer patch cycle. Directory Traversal & "Zip Slip" Mitigations
Globalscape, a part of Fortra, consistently patches its software to address critical security vulnerabilities and improve performance. Recent updates and historical patch trends indicate a focus on directory traversal (Zip Slip) mitigations, API security , and compliance features related to GDPR and TLS protocols. Key Patch and Security Updates