Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
MOVEit Transfer Other Vulnerability - CVE-2024-2291 - Vulnerability Database
MOVEit Transfer

MOVEit Transfer Other Vulnerability - CVE-2024-2291

Medium
Reference: CVE-2024-2291
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2024-2291
Title: MOVEit Transfer Other Vulnerability
Overview:

In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11) 2022.1.12 (14.1.12) 2023.0.9 (15.0.9) 2023.1.4 (15.1.4) a logging bypass vulnerability has been discovered. An authenticated user could manipulate a request to bypass the logging mechanism within the web application which results in user activity not being logged properly.