Project Hyphae
Search

Security Alert: Critical Vulnerabilities in MOVEit – CVE-2024-5805 and CVE-2024-5806

Share This Post

Two critical vulnerabilities have been identified in MOVEit software components: CVE-2024-5805 in MOVEit Gateway and CVE-2024-5806 in MOVEit Transfer. Both vulnerabilities concern improper authentication mechanisms within the SFTP modules, potentially allowing unauthorized access.

CVE-2024-5805 affects MOVEit Gateway version v2024.0.0, with a patch available in v2024.0.1. CVE-2024-5806 impacts several versions of MOVEit Transfer, ranging from v2023.0.0 to v2024.0.2. The latter vulnerability also extends to MOVEit Cloud environments, which have been addressed with patches.

Progress Software has issued advisories urging users to upgrade immediately to the patched releases to mitigate these security risks. The upgrade process will require a brief system downtime. No other mitigation is known at this time.

Detailed investigations and a proof-of-concept exploit for CVE-2024-5806 have been published by WatchTowr Labs. Given the serious nature of these vulnerabilities, users are strongly advised to update their systems as soon as possible to prevent potential security breaches. There are reports of threat actors attempting to exploit these vulnerabilities in the wild. If you require assistance or believe you may be affected, please contact csirt@frsecure.com

Links:

https://www.rapid7.com/blog/post/2024/06/25/etr-authentication-bypasses-in-moveit-transfer-and-moveit-gateway

https://labs.watchtowr.com/auth-bypass-in-un-limited-scenarios-progress-moveit-transfer-cve-2024-5806

https://www.helpnetsecurity.com/2024/06/25/cve-2024-5805-cve-2024-5806/



Reach out to our incident response team for help

More To Explore

Information Security News 8-26-2024

Major Backdoor in Millions of RFID Cards Allows Instant Cloning Article Link: https://www.securityweek.com/major-backdoor-in-millions-of-rfid-cards-allows-instant-cloning Georgia Tech Sued Over Cybersecurity Violations https://www.infosecurity-magazine.com/news/georgia-tech-sued-cybersecurity Halliburton Hit by Cyberattack, Operations

Information Security News 8-19-2024

Hackers Leak 2.7 Billion Data Records with Social Security Numbers Article Link: https://www.bleepingcomputer.com/news/security/hackers-leak-27-billion-data-records-with-social-security-numbers DDoS Attacks Surge 46% in First Half of 2024 Article Link: https://thehackernews.com/2024/08/ddos-attacks-surge-46-in-first-half-of.html

Do You Want to Shore Up Your Defenses?

We're opening our first round of threat hunting engagements to 100 organizations. Sign up or join the wait list here.