MOVEit Transfer Improper Privilege Management Vulnerability - CVE-2023-6218
Reference:
CVE-2023-6218
Title:
MOVEit Transfer Improper Privilege Management Vulnerability
Overview:
In Progress MOVEit Transfer versions released before 2022.0.9 (14.0.9) 2022.1.10 (14.1.10) 2023.0.7 (15.0.7) a privilege escalation path associated with group administrators has been identified. It is possible for a group administrator to elevate a group members permissions to the role of an organizationadministrator.