What is CVE-2023-36932?

CVE-2023-36932 is a vulnerability in N/a. Published 2023-07-05.

Is CVE-2023-36932 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2023-36932

In Progress MOVEit Transfer before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), multiple SQL injection vulnerabilities have been identified in the MOVEit Transfer w…

EPSS: 0.815 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

KushGuptaRH/MOVEit-Response
curated-intel/MOVEit-Transfer

References

www.progress.com/moveit
community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023

Frequently asked questions

What is CVE-2023-36932?: CVE-2023-36932 is a vulnerability in N/a. Published 2023-07-05.
Is CVE-2023-36932 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.