Lucene search

CVE-2024-6576 MOVEit Transfer Privilege Escalation Vulnerability

🗓️ 29 Jul 2024 13:32:46Reported by ProgressSoftwareType

Improper Authentication vulnerability in Progress MOVEit Transfer leading to Privilege Escalation CVE-2024-657

Reporter	Title	Published	Views	Family All 4
Vulnrichment	CVE-2024-6576 MOVEit Transfer Privilege Escalation Vulnerability	29 Jul 202413:46	–	vulnrichment
Tenable Nessus	Progress MOVEit Transfer < 2023.0.12 / 2023.1 < 2023.1.7 / 2024.0 < 2024.0.3 Privilege Escalation	2 Aug 202400:00	–	nessus
NVD	CVE-2024-6576	29 Jul 202414:15	–	nvd
CVE	CVE-2024-6576	29 Jul 202414:15	–	cve

[
  {
    "defaultStatus": "unaffected",
    "modules": [
      "SFTP"
    ],
    "platforms": [
      "Windows"
    ],
    "product": "MOVEit Transfer",
    "vendor": "Progress",
    "versions": [
      {
        "lessThan": "2023.0.12",
        "status": "affected",
        "version": "2023.0.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2023.1.7",
        "status": "affected",
        "version": "2023.1.0",
        "versionType": "semver"
      },
      {
        "lessThan": "2024.0.3",
        "status": "affected",
        "version": "2024.0.0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
progress	www.progress.com/moveit
community	www.community.progress.com/s/article/MOVEit-Transfer-Product-Security-Alert-Bulletin-July-2024-CVE-2024-6576

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

29 Jul 2024 13:46Current

CVSS37.3

EPSS0.00043

CWE-287