Vulnerability Watch

Forum Discussion

snarang's avatar
snarang
Product Team
3 years ago

Zero-Day in MOVEit Transfer Exploited in the Wild (CVE-2023-3

Zero-Day in MOVEit Transfer Exploited in the Wild (CVE-2023-34362)

On May 31, Progress Software Corporation disclosed a “critical” vulnerability in its MOVEit Transfer solution. Identified as CVE-2023-34362, the flaw was exploited in the wild as a zero-day prior to its disclosure. At the time this post was published, it was not clear which threat actor, whether advanced persistent threat (APT) or ransomware group, was responsible for the attacks.

  

For more information about the vulnerability, including the availability of patches and Tenable product coverage, please visit our blog.

No RepliesBe the first to reply