Moveit Automation@* Security Vulnerabilities and Issues — Moveit Automation@* CVE List

ProgressMoveit Automation*

7 matches found

CVE•added 2024/05/22 5:1 p.m.•70 views

CVE-2024-4563

The CVE-2024-4563 entry concerns Progress MOVEit Automation: the configuration export function prior to 2024.0.0 uses a cryptographic method with insufficient bit length. Reported impact in the sources aligns with potential Confidentiality impact (C:H) per CVSS, with the attack vector/network and...

7.5CVSS6.2AI score0.00235EPSS

CVE•added 2026/04/30 3:6 p.m.•22 views

CVE-2026-4670

MOVEit Automation (Progress Software) is affected by two CVEs. CVE-2026-4670 is an authentication bypass due to a primary weakness impacting MOVEit Automation releases older than 2025.0.9, 2024.1.x, and 2024.0.x series; CVSSv3.1 is 9.8 (Network, required none, user interaction none, confidentiali...

9.8CVSS5.2AI score0.05633EPSS

CVE•added 2026/05/20 2:14 p.m.•17 views

CVE-2026-8488

CVE-2026-8488 describes an allocation of resources without limits or throttling in Progress Software MOVEit Automation. Affected versions are MOVEit Automation prior to 2025.0.11 and from 2025.1.0 prior to 2025.1.7. The NVD entry lists a base CVSSv3.1 score of 7.5 (high) with network attack vecto...

7.5CVSS5.8AI score0.00364EPSS

CVE•added 2026/05/20 2:6 p.m.•15 views

CVE-2026-8485

CVE-2026-8485 describes an Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation. Affected product: MOVEit Automation; vulnerable component/area is related to memory allocation in the server/runtime path. Impact: excessive memory allocation may occur, with availabili...

7.5CVSS5.8AI score0.00338EPSS

CVE•added 2026/04/30 3:7 p.m.•14 views

CVE-2026-5174

CVE-2026-5174 describes an improper input validation vulnerability in Progress Software MOVEit Automation that allows privilege escalation. Affected: MOVEit Automation versions 2025.1.0 before 2025.1.5, 2025.0.0 before 2025.0.9, 2024.0.0 before 2024.1.8, and versions prior to 2024.0.0. Root cause...

8.8CVSS5.2AI score0.03241EPSS

CVE•added 2026/05/20 2:12 p.m.•13 views

CVE-2026-8487

CVE-2026-8487: In Progress Software MOVEit Automation, an incorrect default permissions issue allows retrieval of embedded sensitive data. Affected versions include MOVEit Automation prior to 2025.0.11 and from 2025.1.0 before 2025.1.7. CVSS metrics are provided (base scores of 7.5/6.5 depending ...

7.5CVSS5.8AI score0.00272EPSS

CVE•added 2026/05/20 2:11 p.m.•12 views

CVE-2026-8486

CVE-2026-8486 describes an issue in Progress Software MOVEit Automation where resources are allocated without limits or throttling, leading to a Flooding risk. Public records indicate affected versions include MOVEit Automation prior to 2025.0.11 and release windows from 2025.1.0 up to before 202...

7.5CVSS5.8AI score0.00395EPSS