Critical MOVEit Vulnerabilities Expose Organizations to Data Breaches

Critical MOVEit Vulnerabilities Expose Organizations to Data Breaches

First seen 4 May 2026, 13:02 UTC CybersecuritynewsBleepingcomputerwww.emsisoft.comCybersecuritydiveFeeds2.Feedburner+6 89% similarity 74.0

Article Content

Browse articles
ThreatCluster

Progress Software has issued urgent advisories regarding critical vulnerabilities in its MOVEit Automation platform, specifically CVE-2026-4670 and CVE-2026-5174. These vulnerabilities allow attackers to bypass authentication and escalate privileges, potentially leading to unauthorized access and data exposure. The flaws affect numerous organizations, including U.S. local and state government agencies, with over 1,400 MOVEit Automation instances exposed online. The vulnerabilities were disclosed on April 30, 2026, and require immediate patching to mitigate risks. This follows a significant data breach in 2023, where the Cl0p ransomware gang exploited a zero-day vulnerability in MOVEit, impacting over 2,100 organizations and 62 million individuals. The current situation emphasizes the ongoing risk associated with MOVEit software and the necessity for organizations to update their systems promptly to avoid similar incidents.

Key Points: • Critical vulnerabilities in MOVEit Automation allow for authentication bypass and privilege escalation. • Over 1,400 instances of MOVEit Automation are exposed online, including those linked to government agencies. • Organizations are urged to upgrade immediately to mitigate risks associated with these vulnerabilities.

ThreatCluster AI

Timeline

2023-05-31
Progress Software issued an advisory for CVE-2023-34362.
2023-06-02
CVE-2023-34362 added to CISA KEV for active exploitation.
2023-06-12
CVE-2023-35036 published.
2023-06-16
CVE-2023-35708 published.
2026-04-30
CVE-2026-4670 and CVE-2026-5174 published.

Community

Browse all →