Progress Software warns of critical MOVEit Automation vulnerability

As reported by Bleeping Computer, Progress Software has issued a critical security alert regarding an authentication bypass vulnerability in its MOVEit Automation software. This flaw allows remote attackers to gain unauthorized access to systems without requiring any privileges or user interaction.

The vulnerability, tracked as CVE-2026-4670, affects multiple versions of MOVEit Automation. Progress Software strongly recommends upgrading to the latest patched version to remediate the issue, noting that an outage will occur during the upgrade process. Additionally, a separate high-severity privilege escalation vulnerability (CVE-2026-5174) was addressed in the same advisory.

Cybersecurity consultant Daniel Card identified over 1,400 MOVEit Automation instances exposed online, with more than a dozen linked to U.S. local and state government agencies. While there is no current information on exploitation, past MOVEit vulnerabilities have been heavily exploited, notably by the Clop ransomware gang in 2023, impacting thousands of organizations. Managed file transfer (MFT) software remains a prime target for threat actors due to the sensitive data it handles.

Source: Bleeping Computer