It seems you’re looking for an explanation of Globalscape’s terms related to the word “patched” — possibly in the context of software licensing, EULAs, security updates, or support agreements.
Since “long content” was requested, below is a detailed breakdown of how Globalscape (known for products like Enhanced File Transfer (EFT) , MFT Server, DMZ Gateway, etc.) typically defines and applies “patched” within their legal and technical terms. globalscape terms patched
Globalscape’s VDA requires customers to apply security patches within 14 days of release for covered systems. Failure to patch breaches the agreement. It seems you’re looking for an explanation of
Date: July 2024 Software Affected: Globalscape EFT (Enterprise File Transfer) Vulnerability Type: Stored Cross-Site Scripting (XSS) Severity: High (CVSS 8.0+ depending on configuration) Restrict admin access – Enforce phishing-resistant MFA (e
Subsequent patches did not merely fix the specific lines of code allowing RCE; they also hardened the environment. Globalscape introduced stricter AppLocker-like restrictions to limit where the EFT service could execute binaries. This "defense in depth" approach ensures that even if a deserialization flaw exists, the attacker cannot easily execute their payload.
Legacy systems can’t always be patched instantly. Use these compensating controls:
But be clear: these are temporary. Globalscape has officially rated this patch critical severity (9.1/10) .