16 matches found
EUVD-2023-58464
Malicious code in bioql PyPI...
EUVD-2024-46953
Malicious code in bioql PyPI...
CVE-2024-5805
Improper Authentication vulnerability in Progress MOVEit Gateway SFTP modules allows Authentication Bypass.This issue affects MOVEit Gateway: 2024.0.0...
Vulnerabilities fixed in Progress MOVEit
Progress has fixed vulnerabilities in MOVEit Transfer and MOVEit Gateway. During the vulnerability investigation, a vulnerability was also discovered in an unnamed Third-Party component in use by MOVEit Transfer. The vulnerabilities are located in the SFTP module of the affected applications and...
Authentication Bypasses in MOVEit Transfer and MOVEit Gateway
On June 25, 2024, Progress Software published information on two new vulnerabilities in MOVEit Transfer and MOVEit Gateway: CVE-2024-5806, a critical authentication bypass affecting the MOVEit Transfer SFTP service in a default configuration; and CVE-2024-5805, a critical SFTP-associated...
CVE-2024-5805
Improper Authentication vulnerability in Progress MOVEit Gateway SFTP modules allows Authentication Bypass.This issue affects MOVEit Gateway: 2024.0.0...
CVE-2024-5805
Improper Authentication vulnerability in Progress MOVEit Gateway SFTP modules allows Authentication Bypass.This issue affects MOVEit Gateway: 2024.0.0...
CVE-2024-5805 MOVEit Gateway Authentication Bypass Vulnerability
Improper Authentication vulnerability in Progress MOVEit Gateway SFTP modules allows Authentication Bypass.This issue affects MOVEit Gateway: 2024.0.0...
CVE-2024-5805
CVE-2024-5805 is an improper authentication vulnerability in Progress MOVEit Gateway (SFTP module) that allows authentication bypass affecting MOVEit Gateway 2024.0.0. A fix exists in MOVEit Gateway 2024.0.1; 2024.0.0 remains vulnerable. Vendor advisories and national/corporate feeds confirm patc...
CVE-2024-5805 MOVEit Gateway Authentication Bypass Vulnerability
Improper Authentication vulnerability in Progress MOVEit Gateway SFTP modules allows Authentication Bypass.This issue affects MOVEit Gateway: 2024.0.0...
Progress Software MOVEit Security Vulnerability
Progress Software MOVEit is a secure hosted file transfer software from Progress Software, USA. A security vulnerability exists in Progress Software MOVEit Gateway version 2024.0.0 that stems from the presence of an incorrect authentication vulnerability that allows bypassing authentication...
PT-2024-37169 · Progress · Progress Moveit Gateway
Name of the Vulnerable Software and Affected Versions: Progress MOVEit Gateway version 2024.0.0 Description: The issue is related to an Improper Authentication vulnerability in the SFTP modules of Progress MOVEit Gateway, allowing Authentication Bypass. Recommendations: For Progress MOVEit Gatewa...
CVE-2023-6217
In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a reflected cross-site scripting XSS vulnerability has been identified when MOVEit Gateway is used in conjunction with MOVEit Transfer. An attacker could craft a malicious payload targeting...
Cross site scripting
In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a reflected cross-site scripting XSS vulnerability has been identified when MOVEit Gateway is used in conjunction with MOVEit Transfer. An attacker could craft a malicious payload targeting...
CVE-2023-6217 MOVEit Transfer XSS via MOVEit Gateway
In Progress MOVEit Transfer versions released before 2022.0.9 14.0.9, 2022.1.10 14.1.10, 2023.0.7 15.0.7, a reflected cross-site scripting XSS vulnerability has been identified when MOVEit Gateway is used in conjunction with MOVEit Transfer. An attacker could craft a malicious payload targeting...
PT-2023-7248 · Ipswitch · Moveit Transfer +1
Name of the Vulnerable Software and Affected Versions: MOVEit Transfer versions prior to 2022.0.9 14.0.9 MOVEit Transfer versions prior to 2022.1.10 14.1.10 MOVEit Transfer versions prior to 2023.0.7 15.0.7 Description: A reflected cross-site scripting XSS vulnerability has been identified when...