Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
IpswitchMoveit Transfer

3 matches found

CVE
CVEadded 2019/09/24 2:34 p.m.81 views

CVE-2019-16383

CVE-2019-16383 affects Progress MOVEit Transfer via MOVEit.DMZ.WebApi.dll in MOVEit Transfer 2018 SP2 before 10.2.4, 2019 before 11.0.2, and 2019.1 before 11.1.1. The Red Hat/CIRCL/CNVD entries confirm an unauthenticated SQL injection via the REST API that can cause database access breaches. Affe...

9.4CVSS9.4AI score0.05187EPSS
CVE
CVEadded 2019/10/31 4:11 p.m.58 views

CVE-2019-18465

MOVEit Transfer 11.1 (pre-11.1.3) contains a vulnerability that could allow an attacker to sign in without full credentials via the SSH (SFTP) interface, applicable only to specific SSH/SFTP configurations and when the MySQL database is used. The connected documents do not provide explicit exploi...

9.8CVSS9.1AI score0.01487EPSS
CVE
CVEadded 2019/10/31 4:25 p.m.48 views

CVE-2019-18464

CVE-2019-18464 affects Progress MOVEit Transfer REST API across the affected branches: 10.2 before 10.2.6 (2018.3), 11.0 before 11.0.4 (2019.0.4), and 11.1 before 11.1.3 (2019.1.3). The vulnerability is SQL Injection in the REST API that can allow an unauthenticated attacker to gain unauthorized ...

9.8CVSS10AI score0.0195EPSS