all InfoSec news
A vulnerability in MOVEit Transfer Could Allow for Elevated Privileges and Unauthorized Access
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
A Vulnerability has been discovered in Progress Moveit Transfer, which could allow for could allow for elevated privileges and unauthorized access. MOVEit Transfer is a managed file transfer software that allows the enterprise to securely transfer files between business partners and customers using SFTP, SCP, and HTTP-based uploads. Depending on the privileges associated with the user an attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. Users whose accounts are configured …
access business business partners customers enterprise file files file transfer http managed managed file transfer moveit moveit transfer partners privileges progress scp sftp software transfer unauthorized access vulnerability