Progress Software Releases Security Advisory for MOVEit Transfer

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock () or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Progress Software has released a security advisory for a SQL injection vulnerability (CVE-2023-34362) in MOVEit Transfer—a Managed File Transfer Software. A cyber threat actor could exploit this vulnerability to take over an affected system.

CISA urges users and organizations to review the MOVEit Transfer Advisory, follow the mitigation steps, apply the necessary updates, and hunt for any malicious activity.

This product is provided subject to this Notification and this Privacy & Use policy.

Progress Software Releases Security Advisory for MOVEit Transfer

Please share your thoughts

CISA Adds One Known Exploited Vulnerability to Catalog

CISA and Partners Release Advisory on Black Basta Ransomware

CISA Releases Four Industrial Control Systems Advisories

ASD’s ACSC, CISA, and Partners Release Secure by Design Guidance on Choosing Secure and Verifiable Technologies

Progress Software Releases Security Advisory for MOVEit Transfer

Please share your thoughts

Related Advisories

CISA Adds One Known Exploited Vulnerability to Catalog

CISA and Partners Release Advisory on Black Basta Ransomware

CISA Releases Four Industrial Control Systems Advisories

ASD’s ACSC, CISA, and Partners Release Secure by Design Guidance on Choosing Secure and Verifiable Technologies