PT-2026-42187 · Progress · Moveit Automation

Airbus Seclab

+4

·

Published

2026-05-20

·

Updated

2026-05-21

·

CVE-2026-8487

CVSS v3.1

7.5

High

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Name of the Vulnerable Software and Affected Versions MOVEit Automation versions prior to 2025.0.11 MOVEit Automation versions 2025.1.0 through 2025.1.6
Description Incorrect default permissions in the software allow for the retrieval of embedded sensitive data.
Recommendations Update to version 2025.0.11 or newer. Update to version 2025.1.7 or newer.

Fix

Incorrect Default Permissions

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2026-8487

Affected Products

Moveit Automation