Critical Vulnerability Exploited in MOVEit Transfer App
Attackers are targeting a newly disclosed critical vulnerability in the MOVEit Transfer web application that can provide remote code execution on vulnerable systems, reports Dennis Fisher.
According to researchers, the file-transfer vulnerability (CVE-2023-34362) is not simply a SQL injection bug but can also lead to remote code execution, Fisher says.
All versions of MOVEit Transfer are affected, and patched versions have been released to address the vulnerability.
Read more at Decipher.
06/21/2023