9CFA2579-1C03-5275-A092-7DB9E8630882

HistoryJun 28, 2024 - 5:13 p.m.

Exploit for SQL Injection in Progress Moveit Cloud

Vulners
Githubexploit
Exploit for SQL Injection in Progress Moveit Cloud

2024-06-2817:13:15

moveit transfer

unauthenticated

rce

ruby_script

exploitation

vulnerability

attackerkb_analysis

target_ip

session_token

initial_session

sysadmin_account

api_access_token

folderid_leakage

org_key_leakage

deserialization_gadget

encryption_with_org_key

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.969 High

EPSS

Percentile

99.7%

JSON

CVE-2023-34362: MOVEit Transfer Unauthenticated RCE

For a ful…

This is an article that belongs to githubexploit private collection.
Please sign in to get more Information.

nuclei 1

zdt 1

vulnrichment 1

githubexploit 5

cve 1

impervablog 2

akamaiblog 1

talosblog 5

rapid7blog 6

qualysblog 3

wizblog 1

malwarebytes 4

broadcom 1

metasploit 1

packetstorm 1

cisa_kev 1

thn 8

cvelist 1

nessus 1

prion 1

nvd 1

ics 2

attackerkb 1

hivepro 1

trellix 2

wallarmlab 1

securelist 1

nuclei

MOVEit Transfer - Remote Code Execution

2023-06-20 12:42:23

zdt

MOVEit SQL Injection Exploit

2023-06-26 00:00:00

vulnrichment

CVE-2023-34362

2023-06-02 00:00:00

githubexploit

Exploit for SQL Injection in Progress Moveit Cloud

2023-07-09 18:44:22

Exploit for SQL Injection in Progress Moveit Cloud

2023-06-06 15:33:49

Exploit for SQL Injection in Progress Moveit Cloud

2023-06-12 12:56:12

cve

CVE-2023-34362

2023-06-02 14:15:09

impervablog

CVE-2023-34362 – MOVEit Transfer – An attack chain that retrieves sensitive information

2023-06-06 15:55:03

New MOVEit vulnerability CVE-2023-36934 blocked by Imperva

2023-07-10 15:50:43

akamaiblog

MOVEit SQLi Zero-Day (CVE-2023-34362) Exploited by CL0P Ransomware Group

2023-06-08 09:00:00

talosblog

Cybersecurity hotlines at colleges could go a long way toward filling the skills gap

2023-06-22 18:00:44

URLs have always been a great hiding place for threat actors

2023-06-15 18:00:39

Now’s not the time to take our foot off the gas when it comes to fighting disinformation online

2023-06-08 18:00:35

rapid7blog

Metasploit Weekly Wrap-Up

2023-06-23 19:01:39

CVE-2023-47246: SysAid Zero-Day Vulnerability Exploited By Lace Tempest

2023-11-09 14:12:55

CVE-2023-34362: MOVEit Vulnerability Timeline of Events

2023-06-14 19:10:05

qualysblog

Progress MOVEit Transfer Vulnerability Being Actively Exploited

2023-06-07 17:28:24

Qualys Survey of Top 10 Exploited Vulnerabilities in 2023

2023-09-26 13:04:00

2023 Threat Landscape Year in Review: If Everything Is Critical, Nothing Is

2023-12-19 15:00:00

wizblog

CVE-2023-34362 RCE vulnerability in MOVEit Transfer exploited in the wild: everything you need to know

2023-06-04 18:20:05

malwarebytes

Ransomware review: July 2023

2023-07-13 08:15:00

Cl0p ransomware gang claims first victims of the MOVEit vulnerability

2023-06-06 01:00:00

More MOVEit vulnerabilities found while the first one still resonates

2023-06-12 02:00:00

broadcom

CVE-2023-34362 - a SQL injection vulnerability has been found in the MOVEit Transfer web application.

2023-07-27 00:00:00

metasploit

MOVEit SQL Injection vulnerability

2023-06-14 15:04:07

packetstorm

MOVEit SQL Injection

2023-06-23 00:00:00

cisa_kev

Progress MOVEit Transfer SQL Injection Vulnerability

2023-06-02 00:00:00

thn

Microsoft: Lace Tempest Hackers Behind Active Exploitation of MOVEit Transfer App

2023-06-05 12:03:00

New Critical MOVEit Transfer SQL Injection Vulnerabilities Discovered - Patch Now!

2023-06-10 08:50:00

Clop Ransomware Gang Likely Aware of MOVEit Transfer Vulnerability Since 2021

2023-06-08 13:56:00

cvelist

CVE-2023-34362

2023-06-02 00:00:00

nessus

Progress MOVEit Transfer < 2020.0 / 2020.1 / 2021.0 < 2021.0.6 / 2021.1.0 < 2021.1.4 / 2022.0.0 < 2022.0.4 / 2022.1.0 < 2022.1.5 / 2023.0.0 < 2023.0.1 Critical Vulnerability (May 2023)

2023-06-01 00:00:00

prion

Sql injection

2023-06-02 14:15:00

nvd

CVE-2023-34362

2023-06-02 14:15:09

ics

#StopRansomware: CL0P Ransomware Gang Exploits CVE-2023-34362 MOVEit Vulnerability

2023-06-07 12:00:00

Increased Truebot Activity Infects U.S. and Canada Based Networks

2023-07-06 12:00:00

attackerkb

CVE-2023-34362

2023-06-02 00:00:00

hivepro

Actors, Threats and Vulnerabilities 5 June to 11 June 2023

2023-06-13 06:58:42

trellix

The Bug Report - June 2023 Edition

2023-07-05 00:00:00

The Bug Report - June 2023 Edition

2023-07-05 00:00:00

wallarmlab

What You Need To Know About MOVEit

2023-06-16 06:05:40

securelist

IT threat evolution in Q2 2023. Non-mobile statistics

2023-08-30 10:00:41

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

Low

0.969 High

EPSS

Percentile

99.7%

JSON

Related for 9CFA2579-1C03-5275-A092-7DB9E8630882