What is CVE-2023-36933?

CVE-2023-36933 is a vulnerability in N/a. Published 2023-07-05.

Is CVE-2023-36933 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2023-36933

In Progress MOVEit Transfer before 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), it is possible for an attacker to invoke a method that results in an unhandled exception. Triggering this…

EPSS: 0.722 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

KushGuptaRH/MOVEit-Response
curated-intel/MOVEit-Transfer

References

www.progress.com/moveit
community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023

Frequently asked questions

What is CVE-2023-36933?: CVE-2023-36933 is a vulnerability in N/a. Published 2023-07-05.
Is CVE-2023-36933 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.