Discovered Internally

**Name of the Vulnerable Software and Affected Versions** Progress MOVEit Transfer versions 2023.0.0 through 2023.0.11 Progress MOVEit Transfer versions 2023.1.0 through 2023.1.6 Progress MOVEit Transfer versions 2024.0.0 through 2024.0.2 **Description** The issue is related to improper authentication in the SFTP module of Progress MOVEit Transfer, which can lead to privilege escalation. An attacker can exploit this issue to bypass the authentication process and elevate their privileges. **Recommendations** For Progress MOVEit Transfer versions 2023.0.0 through 2023.0.11, update to version 2023.0.12 or later. For Progress MOVEit Transfer versions 2023.1.0 through 2023.1.6, update to version 2023.1.7 or later. For Progress MOVEit Transfer versions 2024.0.0 through 2024.0.2, update to version 2024.0.3 or later.