CVE-2023-36934

In Progress MOVEit Transfer before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), a SQL injection vulnerability has been identified in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to the MOVEit Transfer database. An attacker could submit a crafted payload to a MOVEit Transfer application endpoint that could result in modification and disclosure of MOVEit database content.

CVSS v3 9.1 CRITICAL

9.1^/10

CVSS v3 : CRITICAL

Vector :

Exploitability : 3.9 / Impact : 5.2

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023	Patch Release Notes Third Party Advisory
https://www.progress.com/moveit	Product

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:progress:moveit_transfer::::::::
	cpe:2.3:a:progress:moveit_transfer::::::::
	cpe:2.3:a:progress:moveit_transfer::::::::
	cpe:2.3:a:progress:moveit_transfer::::::::
	cpe:2.3:a:progress:moveit_transfer::::::::
	cpe:2.3:a:progress:moveit_transfer::::::::

History

10 Jul 2023, 13:49

Type	Values Removed	Values Added
CWE		CWE-89
First Time		Progress moveit Transfer Progress
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 9.1
CPE		cpe:2.3:a:progress:moveit_transfer::::::::
References	~~(MISC) https://www.progress.com/moveit -~~	(MISC) https://www.progress.com/moveit - Product
References	~~(CONFIRM) https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 -~~	(CONFIRM) https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 - Patch, Release Notes, Third Party Advisory

05 Jul 2023, 16:25

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-07-05 16:15

Updated : 2023-12-10 15:01

NVD link : CVE-2023-36934

Mitre link : CVE-2023-36934

CVE.ORG link : CVE-2023-36934

JSON object : View

Products Affected

progress

moveit_transfer

CWE

CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

{"id": "CVE-2023-36934", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 9.1, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 5.2, "exploitabilityScore": 3.9}]}, "published": "2023-07-05T16:15:09.793", "references": [{"url": "https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023", "tags": ["Patch", "Release Notes", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.progress.com/moveit", "tags": ["Product"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-89"}]}], "descriptions": [{"lang": "en", "value": "In Progress MOVEit Transfer before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), a SQL injection vulnerability has been identified in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to the MOVEit Transfer database. An attacker could submit a crafted payload to a MOVEit Transfer application endpoint that could result in modification and disclosure of MOVEit database content."}], "lastModified": "2023-07-10T13:49:29.260", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76A63B2D-2869-403B-9D84-36CFA25695EA", "versionEndExcluding": "12.1.11"}, {"criteria": "cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00D12F3B-6B4C-4345-9C5B-C6B8AC4B5663", "versionEndExcluding": "13.0.9", "versionStartIncluding": "13.0.0"}, {"criteria": "cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2262AEC2-85FB-4964-B6F5-7B3E61CF88FB", "versionEndExcluding": "13.1.7", "versionStartIncluding": "13.1.0"}, {"criteria": "cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8606528F-0884-43BE-9CE2-AB1E8FA68819", "versionEndExcluding": "14.0.7", "versionStartIncluding": "14.0.0"}, {"criteria": "cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4E7A0668-64EF-46D0-B556-A734DFD4D81B", "versionEndExcluding": "14.1.8", "versionStartIncluding": "14.1.0"}, {"criteria": "cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "ED0819C8-6309-4221-9D5F-32098F6314F3", "versionEndExcluding": "15.0.4", "versionStartIncluding": "15.0.0"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}