CVSS: 9.9EPSS: 0%CPEs: 2EXPL: 0CVE-2023-42657 – WS_FTP Server Directory Traversal
https://notcve.org/view.php?id=CVE-2023-42657
27 Sep 2023 — In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a directory traversal vulnerability was discovered. An attacker could leverage this vulnerability to perform file operations (delete, rename, rmdir, mkdir) on files and folders outside of their authorized WS_FTP folder path. Attackers could also escape the context of the WS_FTP Server file structure and perform the same level of operations (delete, rename, rmdir, mkdir) on file and folder locations on the underlying operating system. En las versiones del s... • https://community.progress.com/s/article/WS-FTP-Server-Critical-Vulnerability-September-2023 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 92%CPEs: 2EXPL: 4CVE-2023-40044 – Progress WS_FTP Server Deserialization of Untrusted Data Vulnerability
https://notcve.org/view.php?id=CVE-2023-40044
27 Sep 2023 — In WS_FTP Server versions prior to 8.7.4 and 8.8.2, a pre-authenticated attacker could leverage a .NET deserialization vulnerability in the Ad Hoc Transfer module to execute remote commands on the underlying WS_FTP Server operating system. En las versiones del servidor WS_FTP anteriores a la 8.7.4 y 8.8.2, un atacante previamente autenticado podría aprovechar una vulnerabilidad de deserialización de .NET en el módulo Ad Hoc Transfer para ejecutar comandos remotos en el sistema operativo subyacente del servi... • https://packetstorm.news/files/id/174917 • CWE-502: Deserialization of Untrusted Data •
CVSS: 6.4EPSS: 0%CPEs: 4EXPL: 0CVE-2023-42656 – MOVEit Transfer Reflected XSS
https://notcve.org/view.php?id=CVE-2023-42656
20 Sep 2023 — In Progress MOVEit Transfer versions released before 2021.1.8 (13.1.8), 2022.0.8 (14.0.8), 2022.1.9 (14.1.9), 2023.0.6 (15.0.6), a reflected cross-site scripting (XSS) vulnerability has been identified in MOVEit Transfer's web interface. An attacker could craft a malicious payload targeting MOVEit Transfer users during the package composition procedure. If a MOVEit user interacts with the crafted payload, the attacker would be able to execute malicious JavaScript within the context of the victims browser. V... • https://community.progress.com/s/article/MOVEit-Transfer-Service-Pack-September-2023 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 8.3EPSS: 14%CPEs: 4EXPL: 0CVE-2023-40043 – MOVEit Transfer System Administrator SQL Injection
https://notcve.org/view.php?id=CVE-2023-40043
20 Sep 2023 — In Progress MOVEit Transfer versions released before 2021.1.8 (13.1.8), 2022.0.8 (14.0.8), 2022.1.9 (14.1.9), 2023.0.6 (15.0.6), a SQL injection vulnerability has been identified in the MOVEit Transfer web interface that could allow a MOVEit system administrator account to gain unauthorized access to the MOVEit Transfer database. A MOVEit system administrator could submit a crafted payload to the MOVEit Transfer web interface which could result in modification and disclosure of MOVEit database content. En l... • https://community.progress.com/s/article/MOVEit-Transfer-Service-Pack-September-2023 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.0EPSS: 31%CPEs: 4EXPL: 0CVE-2023-42660 – MOVEit Transfer Machine Interface SQL Injection
https://notcve.org/view.php?id=CVE-2023-42660
20 Sep 2023 — In Progress MOVEit Transfer versions released before 2021.1.8 (13.1.8), 2022.0.8 (14.0.8), 2022.1.9 (14.1.9), 2023.0.6 (15.0.6), a SQL injection vulnerability has been identified in the MOVEit Transfer machine interface that could allow an authenticated attacker to gain unauthorized access to the MOVEit Transfer database. An attacker could submit a crafted payload to the MOVEit Transfer machine interface which could result in modification and disclosure of MOVEit database content. En las versiones de MOVEit... • https://community.progress.com/s/article/MOVEit-Transfer-Service-Pack-September-2023 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-28864
https://notcve.org/view.php?id=CVE-2023-28864
17 Jul 2023 — Progress Chef Infra Server before 15.7 allows a local attacker to exploit a /var/opt/opscode/local-mode-cache/backup world-readable temporary backup path to access sensitive information, resulting in the disclosure of all indexed node data, because OpenSearch credentials are exposed. (The data typically includes credentials for additional systems.) The attacker must wait for an admin to run the "chef-server-ctl reconfigure" command. • https://blog.mondoo.com/chef-infra-server-cve-2023-28864-impact-and-remediation • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 8.5EPSS: 42%CPEs: 6EXPL: 0CVE-2023-36932
https://notcve.org/view.php?id=CVE-2023-36932
05 Jul 2023 — In Progress MOVEit Transfer before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), multiple SQL injection vulnerabilities have been identified in the MOVEit Transfer web application that could allow an authenticated attacker to gain unauthorized access to the MOVEit Transfer database. An attacker could submit a crafted payload to a MOVEit Transfer application endpoint that could result in modification and disclosure of MOVEit database c... • https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: 30%CPEs: 6EXPL: 0CVE-2023-36933
https://notcve.org/view.php?id=CVE-2023-36933
05 Jul 2023 — In Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), it is possible for an attacker to invoke a method that results in an unhandled exception. Triggering this workflow can cause the MOVEit Transfer application to terminate unexpectedly. • https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 9.8EPSS: 94%CPEs: 6EXPL: 0CVE-2023-36934 – Progress Software MOVEit Transfer UserProcessPassChangeRequest SQL Injection Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2023-36934
05 Jul 2023 — In Progress MOVEit Transfer before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), a SQL injection vulnerability has been identified in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain unauthorized access to the MOVEit Transfer database. An attacker could submit a crafted payload to a MOVEit Transfer application endpoint that could result in modification and disclosure of MOVEit database content. ... • https://community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.0EPSS: 13%CPEs: 5EXPL: 0CVE-2023-34203
https://notcve.org/view.php?id=CVE-2023-34203
23 Jun 2023 — In Progress OpenEdge OEM (OpenEdge Management) and OEE (OpenEdge Explorer) before 12.7, a remote user (who has any OEM or OEE role) could perform a URL injection attack to change identity or role membership, e.g., escalate to admin. This affects OpenEdge LTS before 11.7.16, 12.x before 12.2.12, and 12.3.x through 12.6.x before 12.7. • https://www.progress.com/openedge • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •