Lucene search
K

6 matches found

Circl
Circl
added 2023/06/17 9:42 a.m.14 views

CVE-2023-35708

creationtimestamp| type| source ---|---|--- 2023-06-17 09:42:58+00:00| exploited| https://t.me/JerusalemElectronicArmy/401 2023-06-17 10:53:32+00:00| seen| Telegram/gubKb2Yanq1m7aRUYpFosJLMY1OTa0zqV9xfndvyMGC8wWQ 2023-06-19 07:24:22+00:00| seen| https://t.me/CyberSecurityIL/24237 2023-06-19...

9.8CVSS9AI score0.96682EPSS
Exploits0References8
Talos Blog
Talos Blog
added 2023/06/16 6:17 p.m.43 views

Active exploitation of the MOVEit Transfer vulnerability — CVE-2023-34362 — by Clop ransomware group

Cisco Talos is monitoring recent reports of exploitation attempts against CVE-2023-34362, a SQL injection zero-day vulnerability in the MOVEit Transfer managed file transfer MFT solution that has been actively targeted since late May 2023. Successful exploitation could lead to remote code executi...

7.5CVSS10.9AI score0.99934EPSS
Exploits15
Wallarm Lab
Wallarm Lab
added 2023/06/16 6:5 a.m.60 views

What You Need To Know About MOVEit

The MOVEit Vulnerabilities and Latest Exploits. Impact On Governmental Agencies And Large Organizations Governmental agencies and large organizations around the world are being hit by ransomware attacks exploiting several vulnerabilities in MOVEit, a widely used file transfer solution. The...

7.5CVSS11AI score0.99934EPSS
Exploits15
NVD
NVD
added 2023/06/16 4:15 a.m.32 views

CVE-2023-35708

In Progress MOVEit Transfer before 2021.0.8 13.0.8, 2021.1.6 13.1.6, 2022.0.6 14.0.6, 2022.1.7 14.1.7, and 2023.0.3 15.0.3, a SQL injection vulnerability has been identified in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to MOVEit...

9.8CVSS9.6AI score0.96682EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/06/16 12:0 a.m.8 views

CVE-2023-35708

In Progress MOVEit Transfer before 2021.0.8 13.0.8, 2021.1.6 13.1.6, 2022.0.6 14.0.6, 2022.1.7 14.1.7, and 2023.0.3 15.0.3, a SQL injection vulnerability has been identified in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to MOVEit...

7.8AI score0.96682EPSS
Exploits0References3
Rapid7 Blog
Rapid7 Blog
added 2023/06/01 3:23 p.m.212 views

Rapid7 Observed Exploitation of Critical MOVEit Transfer Vulnerability

Note: As of June 2, 2023, CVE-2023-34362 has been assigned to this vulnerability. On Friday, June 9, Progress Software released patches for a second vulnerability, CVE-2023-35036. On Thursday, June 15, a third vulnerability was announced and later assigned CVE-2023-35708. Progress has updates her...

7.5CVSS10.4AI score0.99934EPSS
Exploits15
Rows per page
Query Builder