GoAnywhere MFT is listed as a confirmed affected platform in the Storm-1175 Medusa ransomware campaign. No discrete CVE identifier for GoAnywhere was provided in the published source data for this period; the campaign item references GoAnywhere MFT as a confirmed target platform without specifying which CVE is being exploited in this cluster. Organizations running GoAnywhere MFT should consult the Fortra advisory portal directly for current vulnerability status and apply all available patches for internet-facing instances.