virus logo Intrusion Prevention

Progress.MOVEit.Transfer.human.SQL.Injection

description-logoDescription

This indicates an attack attempt to exploit an SQL Injection Vulnerability in Progress MOVEit.
The vulnerability is due to insufficient validation in the application when handling a crafted HTTP request. A remote attacker can exploit this to send a crafted query to execute SQL commands on a vulnerable server.

affected-products-logoAffected Products

Progress MOVEit Transfer before 2020.1.11 (12.1.11)
Progress MOVEit Transfer before 2021.0.9 (13.0.9)
Progress MOVEit Transfer before 2021.1.7 (13.1.7)
Progress MOVEit Transfer before 2022.0.7 (14.0.7)
Progress MOVEit Transfer before 2022.1.8 (14.1.8)
Progress MOVEit Transfer before 2022.1.8 2023.0.4 (15.0.4)

Impact logoImpact

System Compromise: Remote attackers can add, view, delete or modify data in the database of the affected application.

recomended-action-logoRecommended Actions

Upgrade to the latest version available from the vendor.
https://www.progress.com/moveit

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2024-04-22 27.772 Default_action:pass:drop
2024-03-25 27.754
ID 54959
Created Mar 12, 2024
Updated Apr 10, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2023-36934
Exploit Prediction Score 9.42%
Default Action drop
Active
Affected OS Windows, Linux, BSD, Solaris, MacOS
Affected App Other