CVE-2025-10035

Researchers Say GoAnywhere CVSS 10 Flaw Was Exploited as Zero-Day Before Disclosure

The attack chain hinges on a forged license signature tied to an undiscovered private key, leaving investigators unsure how adversaries achieved code execution.