MOVEit Transfer, the software at the center of the recent massive Clop ransomware attack, has received an update that fixes a critical severity SQL injection bug and two less severe vulnerabilities. These attacks resulted in the theft of data and extortion of money from major organizations around the world. The SQL injection vulnerability is a well-known and dangerous security flaw that allows attackers to manipulate databases and run any code they want. This flaw is marked as CVE-2023-36934, potentially allowing an unauthenticated attacker to gain unauthorized access to the MOVEit Transfer database.
Progress, the developer of MOVEit Transfer, discovered several SQL injection issues in their product that include a critical issue tracked as CVE-2023-36934, which can be exploited without user authentication. What makes CVE-2023-36934 even scarier is the fact that this CVE can be manipulated without the need for an attacker to log in. However, there is currently no evidence that this particular flaw is being exploited by malicious actors. This vulnerability affects multiple versions of MOVEit Transfer, including 12.1.10 and earlier, 13.0.8 and earlier, 13.1.6 and earlier, 14.0.6 and earlier, 14.1.7 and older, and 15.0.3 and earlier. The third vulnerability addressed with this patch is CVE-2023-36933, a high-severity issue that could allow an attacker to cause unexpected program termination.
The software vendor fixed the flaw a few days after its discovery, but it was revealed that the fix was made about two years after Clop first started looking for ways to exploit the now-fixed flaw. Researchers from HackerOne and Trend Micro's Zero Day Initiative responsibly reported to Progress Software about this vulnerability. As the American software company is still dealing with the huge impact of the security incident, they have decided to introduce regular security updates called "Service Packs," which are released monthly.
As part of this new approach, the software upgrade process is streamlined, allowing MOVEit Transfer admins to apply fixes faster and easier than ever before. For those using MOVEit Transfer, it is highly recommended that you upgrade to the latest version of MOVEit Transfer. as Progress Software has rolled out updates for all major versions of the software. To protect your system from this vulnerability.
0 Comments