Moveit Automation
Approved changes feed: RSS · Atom
cpe:2.3:a:progress:moveit_automation:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Progress (f9d80521-f73f-5a85-8df9-9306f2f67809) |
|---|---|
| Product | Moveit Automation (95b9a88c-4f93-5e2f-a59e-4ea87ddda88e) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-8485 |
vulnerable | 2026-06-03 15:27:57.969879 |
Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation
MEDIUM (5.9)
Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation allows Excessive Allocation.
This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.
Published: 2026-05-20T14:06:57.546Z
Updated: 2026-05-20T14:24:51.862Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-5174 |
vulnerable | 2026-06-03 15:26:26.639231 |
Improper Access Control Vulnerability in Progress MOVEit Automation
HIGH (7.7)
Improper input validation vulnerability in Progress Software MOVEit Automation allows Privilege Escalation.
This issue affects MOVEit Automation: from 2025.1.0 before 2025.1.5, from 2025.0.0 before 2025.0.9, from 2024.0.0 before 2024.1.8, versions prior to 2024.0.0.
Published: 2026-04-30T15:07:21.589Z
Updated: 2026-05-01T15:24:46.453Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-4670 |
vulnerable | 2026-06-03 15:26:25.864251 |
Improper Authentication vulnerability in Progress MOVEit Automation
CRITICAL (9.8)
Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass.
This issue affects MOVEit Automation: from 2025.0.0 before 2025.0.9, from 2024.0.0 before 2024.1.8, versions prior to 2024.0.0.
Published: 2026-04-30T15:06:11.600Z
Updated: 2026-05-01T03:55:57.784Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4563 |
vulnerable | 2026-06-03 14:57:15.774544 |
The Progress MOVEit Automation Configuration Export Function Uses a Cryptographic Method with Insufficient Bit Length
MEDIUM (6.1)
The Progress MOVEit Automation configuration export function prior to 2024.0.0 uses a cryptographic method with insufficient bit length.
Published: 2024-05-22T17:01:00.943Z
Updated: 2024-08-01T20:47:41.067Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4563 |
not_vulnerable | 2026-06-03 14:57:15.772150 |
The Progress MOVEit Automation Configuration Export Function Uses a Cryptographic Method with Insufficient Bit Length
MEDIUM (6.1)
The Progress MOVEit Automation configuration export function prior to 2024.0.0 uses a cryptographic method with insufficient bit length.
Published: 2024-05-22T17:01:00.943Z
Updated: 2024-08-01T20:47:41.067Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-12677 |
vulnerable | 2026-06-03 14:41:35.098219 |
Details available
An issue was discovered in Progress MOVEit Automation Web Admin. A Web Admin application endpoint failed to adequately sanitize malicious input, which could allow an unauthenticated attacker to execute arbitrary code in a victim's browser, aka XSS. This affects 2018 - 2018.0 prior to 2018.0.3, 2018 SP1 - 2018.2 prior to 2018.2.3, 2018 SP2 - 2018.3 prior to 2018.3.7, 2019 - 2019.0 prior to 2019.0.3, 2019.1 - 2019.1 prior to 2019.1.2, and 2019.2 - 2019.2 prior to 2019.2.2.
Published: 2020-05-14T17:34:03.000Z
Updated: 2024-08-04T12:04:22.530Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.