all InfoSec news
Multiple Vulnerabilities in Progress MOVEit Transfer Could Allow for Unauthorized Database Access
Center for Internet Security - Multi-State Information Sharing and Analysis Center www.cisecurity.org
Multiple vulnerabilities have been discovered in Progress Moveit Transfer, which could allow for unauthorized database access. MOVEit Transfer is a managed file transfer software that allows the enterprise to securely transfer files between business partners and customers using SFTP, SCP, and HTTP-based uploads. If successfully exploited, an attacker could gain unauthorized access to the database, potentially compromising confidential information, user credentials, and other sensitive data. This unauthorized access could also result in unauthorized modifications and disclosure of the database content.
access attacker business business partners customers database enterprise exploited file files file transfer http managed managed file transfer moveit moveit transfer partners progress scp sftp software transfer vulnerabilities