PT-2026-42187 · Progress · Moveit Automation
Airbus Seclab
+4
·
Published
2026-05-20
·
Updated
2026-05-21
·
CVE-2026-8487
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
MOVEit Automation versions prior to 2025.0.11
MOVEit Automation versions 2025.1.0 through 2025.1.6
Description
Incorrect default permissions in the software allow for the retrieval of embedded sensitive data.
Recommendations
Update to version 2025.0.11 or newer.
Update to version 2025.1.7 or newer.
Fix
Incorrect Default Permissions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Moveit Automation