Globalscape: Terms Patched __top__

Do not wait for a breach to update your software. Formalize a process to identify, test, and install critical security patches within one month of release. Given that high-risk items are often remediated and made available in the next major release or a dedicated security update, your team should be monitoring for these releases proactively.

For organizations relying on GlobalSCAPE’s EFT platform (formerly known as Globalscape EFT), understanding the scope of these "terms patched" updates is essential for maintaining data integrity, regulatory compliance (HIPAA, GDPR, SOX), and operational continuity.

Several older vulnerabilities have also been identified and patched over the years, including: globalscape terms patched

To help you check your system's current readiness, could you let me know:

A patched application running on a vulnerable operating system is still at risk. Ensure the underlying Windows OS has all the latest security patches installed, especially for broad vulnerabilities like Meltdown and Spectre, which affect the hardware and OS, not the EFT software itself. The principle of running a "single role" server—where only your EFT software is installed—further reduces the attack surface. Do not wait for a breach to update your software

As of mid-2025, the threat landscape continues to evolve. GlobalSCAPE customers should watch for future patches addressing:

Organizations using the GlobalSCAPE DMZ Gateway saw a patch correcting how the gateway interprets "allowed source IP" terms. Previously, IPv6-mapped IPv4 addresses could bypass allowlisting. The principle of running a "single role" server—where

CVE-2023-2991 Severity: MEDIUM (CVSS 5.3) Disclosure Date: June 22, 2023

Crucially, this means that not every security-related fix arrives via a separate patch. Some are bundled into the next major release, which may include general bug fixes and feature enhancements alongside security improvements.