What is CVE-2023-36934?

CVE-2023-36934 is a vulnerability in N/a. Published 2023-07-05.

Is CVE-2023-36934 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2023-36934

In Progress MOVEit Transfer before 2020.1.11 (12.1.11), 2021.0.9 (13.0.9), 2021.1.7 (13.1.7), 2022.0.7 (14.0.7), 2022.1.8 (14.1.8), and 2023.0.4 (15.0.4), a SQL injection vulnerability has been identified in the MOVEit Transfer web applica…

EPSS: 0.913 (99.7th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

KushGuptaRH/MOVEit-Response
curated-intel/MOVEit-Transfer
zhanpengliu-tencent/medium-cve

References

www.progress.com/moveit
community.progress.com/s/article/MOVEit-Transfer-2020-1-Service-Pack-July-2023

Frequently asked questions

What is CVE-2023-36934?: CVE-2023-36934 is a vulnerability in N/a. Published 2023-07-05.
Is CVE-2023-36934 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.