SQL injection vulnerability in MOVEit Transfer leads to data breaches worldwide

21 June 2023

What you need to know Unpatched versions of the MOVEit Transfer file management web application are critically vulnerable to SQL injection (reported as CVE-2023-34362). The vulnerability affects all versions of MOVEit Transfer earlier than 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1).

Source: SC Magazine

Date:

21 June 2023

Categorie(s):

NEWS

Tag(s):

Databases, IT, MOVEit, SQL, Transfer

Criminals open DocuSign’s Envelope API to make BEC special delivery5 November 2024
Biden administration prepares second executive order on cybersecurity5 November 2024
Link Index for Customer Identity and Access Management5 November 2024
Technical debt, multi-cloud complexity hinder modern tech adoption5 November 2024
FBI Seeks Public Help to Identify Chinese Hackers Behind Global Cyber Intrusions5 November 2024