GoAnywhere OpenPGP Studio

by Fortrav1.2.3

Last updated Jun 8, 2026

Free PGP Encryption Software

Install with winget

$ winget install --id Fortra.GoAnywhereOpenPGPStudio --exact --version 1.2.3

Run in Command Prompt, PowerShell, or Windows Terminal. Prompts for any agreements.

Silent install command for GoAnywhere OpenPGP Studio

GoAnywhere OpenPGP Studio uses EXE. The silent install switches are -q -Dinstall4j.suppressUnattendedReboot=true.

One-line silent install (x64, machine scope)

gapgpstudio1_2_3_windows-x64.exe -q -Dinstall4j.suppressUnattendedReboot=true

See the full silent install reference for GoAnywhere OpenPGP Studio →

Built by Pckgr

For Intune admins

Stop chasing app updates. Pckgr patches them for you.

Automated application patching for Microsoft Intune. Pckgr keeps a curated library of 1,000+ apps continuously up-to-date in your tenant via Microsoft Graph - no manual repackaging, no chasing vendor sites.

Start free 30-day trial

No credit card required.

About

GoAnywhere Open PGP Studio is free PGP encryption software that simplifies and secures your data before, during, and after your file transfers. It uses modern encryption methods, like the use of dual-keys for authentication, to ensure the safety of your files no matter where they reside, and can verify documents via embedded digital signatures.

Installers · v1.2.3

Architecture	Type	Scope	Install	Download
x64	EXE	machine		Direct

Copy a command tailored to that specific architecture, type, and scope - useful when winget would otherwise pick a different default.

Security

13 known CVEs via NVD

medium6.5Fix in v7.10.0CVE-2026-1089affects before 7.10.0Apr 21, 2026
User‑Controlled HTTP Header in Fortra's GoAnywhere MFT prior to version 7.10.0 allows attackers to trigger a DNS lookup, as well as DNS Rebinding and Information Disclosure.
Vendor advisory
medium5.4Fix in v7.10.0CVE-2026-0972affects before 7.10.0Apr 21, 2026
HTML injection is possible in system generated emails in Fortra's GoAnywhere MFT prior to 7.10.0. Note: The title, details, and description of this CVE were corrected post-publishing.
Vendor advisory
medium4.3Fix in v7.10.0CVE-2026-0971affects before 7.10.0Apr 21, 2026
An improper session timeout issue in Fortra's GoAnywhere MFT prior to version 7.10.0 results in SAML configured Web Users being redirected to the regular login page instead of the SAML login page.
medium5.8Fix in v7.10.0CVE-2025-1241affects before 7.10.0Apr 21, 2026
Encrypted values in Fortra's GoAnywhere MFT prior to version 7.10.0 and GoAnywhere Agents prior to version 2.2.0 utilize a static IV which allows admin users to brute-force decryption of data.
Vendor advisory
high7.3Fix in v7.10.0CVE-2025-14362affects before 7.10.0Apr 21, 2026
The login limit is not enforced on the SFTP service of Fortra's GoAnywhere MFT prior to 7.10.0 if the Web User attempting to be logged in to is configured to log in with an SSH Key, making the SSH key vulnerable to being guessed via Brute Force.
Vendor advisory
medium4.2Fix in v7.9.0CVE-2025-8148affects before 7.9.0Dec 5, 2025
An Improper Access Control in the SFTP service in Fortra's GoAnywhere MFT prior to version 7.9.0 allows Web Users with an Authentication Alias and a valid SSH key but limited to Password authentication for SFTP to still login using their SSH key.
Vendor advisory
critical10.0Fix in v7.6.3CVE-2025-10035affects before 7.6.3, 7.8.4Sep 18, 2025
A deserialization vulnerability in the License Servlet of Fortra's GoAnywhere MFT allows an actor with a validly forged license response signature to deserialize an arbitrary actor-controlled object, possibly leading to command injection.
Vendor advisory
low3.5Fix in v7.8.0CVE-2025-0049affects before 7.8.0Apr 28, 2025
When a Web User without Create permission on subfolders attempts to upload a file to a non-existent directory, the error message includes the absolute server path which may allow Fuzzing for application mapping. This issue affects GoAnywhere: before 7.8.0.
Vendor advisory

Showing 8 of 13. Source: NVD, updated 5h ago. Patch status is best-effort: NVD's fix version is compared against the latest version in winget, but the two version formats don't always align. Confirm with the vendor advisory before treating any specific build as safe.

See a CVE that affects your fleet? Push the patched version to Intune in one click with Pckgr - automated patching is the only way to keep up.

Related apps

Ente Authente
ente-io.auth-desktopv4.4.23
Open source 2FA authenticator, with end-to-end encrypted backups.
BraveBrave Software Inc
Brave.Bravev149.1.91.172
Secure, Fast & Private Web Browser with Adblocker
Proton VPNProton AG
Proton.ProtonVPNv4.4.1
High-speed Swiss VPN that safeguards your privacy.
Sera AntivirusYash12007
Yash12007.SeraAntivirusv3.0.0
Minimal, calm antivirus with real-time safety score and built-in system tools.
Nessus AgentTenable, Inc.
Tenable.NessusAgentv11.2.0.20301
Nessus Agents give you visibility into additional IT assets - even endpoints, and other remote assets that intermittently connect to the internet.
Securepoint SSL VPNSecurepoint GmbH
SecurepointGmbH.SecurepointSSLVPNv2.0.47
SSLVPN Client for Securepoint UTM

More from Fortra or browse cryptology, encrypt, encryption.

Frequently asked questions

How do I install GoAnywhere OpenPGP Studio on Windows?

Open Windows Terminal, PowerShell, or Command Prompt and run: winget install --id Fortra.GoAnywhereOpenPGPStudio --exact --version 1.2.3. winget downloads the installer from Fortra and runs it. Requires Windows 10 (1809+) or Windows 11.

How do I install GoAnywhere OpenPGP Studio silently for unattended deployment?

Add --silent and accept the agreements upfront: winget install --id Fortra.GoAnywhereOpenPGPStudio --exact 1.2.3 --silent --accept-package-agreements --accept-source-agreements. This is the variant Intune, Configuration Manager, and other deployment tools should use.

What are the silent install switches for GoAnywhere OpenPGP Studio?

GoAnywhere OpenPGP Studio uses EXE. Run the downloaded installer with: gapgpstudio1_2_3_windows-x64.exe -q -Dinstall4j.suppressUnattendedReboot=true. The silent switches are -q -Dinstall4j.suppressUnattendedReboot=true.

How do I uninstall GoAnywhere OpenPGP Studio via winget?

Run: winget uninstall --id Fortra.GoAnywhereOpenPGPStudio --exact. Add --silent for unattended uninstalls. winget will use the registered uninstaller from GoAnywhere OpenPGP Studio's Apps & Features entry.

Is GoAnywhere OpenPGP Studio free?

GoAnywhere OpenPGP Studio is distributed under Freeware. Refer to the publisher (https://www.goanywhere.com/products/open-pgp-studio) for the full license terms - Wingetly itself does not charge for installation.

Does GoAnywhere OpenPGP Studio work on Windows 10?

Yes, as long as your Windows 10 build supports winget (1809 or newer). winget ships with App Installer on Windows 10/11 and pulls GoAnywhere OpenPGP Studio directly from the publisher.

How do I keep GoAnywhere OpenPGP Studio up to date?

Run winget upgrade --id Fortra.GoAnywhereOpenPGPStudio --exact, or winget upgrade --all to update everything winget tracks. We index 1 version of GoAnywhere OpenPGP Studio from microsoft/winget-pkgs.