Progress Software has issued urgent updates to address two critical security vulnerabilities within its MOVEit Automation solution. The most severe of these flaws, a critical authentication bypass, could grant unauthorized attackers extensive access to sensitive enterprise data. The company is urging all users to deploy these patches immediately to safeguard their systems against potential exploitation.
MOVEit Automation, formerly known as MOVEit Central, is a robust managed file transfer (MFT) platform designed to automate and secure file movement workflows in business environments. Its ability to handle complex transfer operations without custom scripting makes it a widely adopted tool for organizations managing large volumes of data. The disclosure of these vulnerabilities highlights the ongoing cybersecurity challenges faced by enterprises relying on such mission-critical software.
Critical Vulnerabilities in MOVEit Automation Require Immediate Patching
The identified issues include a critical authentication bypass vulnerability, designated CVE-2026-4670, which carries a severe CVSS score of 9.8. This flaw could allow attackers to circumvent security measures and gain unauthorized entry into the MOVEit Automation system. Additionally, a less severe but still significant improper input validation vulnerability, CVE-2026-5174 (CVSS score: 7.7), could enable privilege escalation, granting attackers higher levels of control within the compromised environment.
According to Progress Software’s advisory, the combination of these critical and high-severity vulnerabilities could permit authentication bypass and privilege escalation through the service backend command port interfaces. Such exploitation poses a serious risk, potentially leading to unauthorized access to systems, complete administrative control by malicious actors, and significant exposure of sensitive data. The implications for businesses could range from data breaches and intellectual property theft to operational disruption.
Affected Versions and Patch Deployment
The security flaws impact specific versions of MOVEit Automation, emphasizing the need for users to verify their current software version and apply the corresponding fix. The affected versions are:
- MOVEit Automation versions up to and including 2025.1.4, which are addressed by the release of MOVEit Automation 2025.1.5.
- MOVEit Automation versions up to and including 2025.0.8, with the fix available in MOVEit Automation 2025.0.9.
- MOVEit Automation versions up to and including 2024.1.7, resolved by MOVEit Automation 2024.1.8.
Progress Software has stressed that there are currently no known workarounds that can effectively mitigate these vulnerabilities. Therefore, a timely update to the patched versions is the only recommended course of action for robust protection. The company is urging its customer base to prioritize this patching process in their security maintenance schedules.
The discovery and reporting of these vulnerabilities are credited to researchers Anaïs Gantet, Delphine Gourdou, Quentin Liddell, and Matteo Ricordeau from Airbus SecLab. Their diligent work in identifying these security weaknesses plays a crucial role in enhancing the overall security posture of the MOVEit Automation platform.
While Progress Software has not indicated any evidence of these specific MOVEit Automation flaws being actively exploited in the wild, the company’s advisory carries significant weight. Past incidents involving MOVEit Transfer, a related product, saw its vulnerabilities leveraged by sophisticated ransomware gangs such as Cl0p to conduct widespread attacks. This history underscores the importance of proactive security measures and the potential for severe consequences if such vulnerabilities are left unaddressed.
As organizations continue to rely on managed file transfer solutions like MOVEit Automation for critical business operations, the swift adoption of security patches remains paramount. The ongoing cybersecurity landscape demands vigilance, and timely updates are a fundamental defense against emerging threats. Businesses should monitor Progress Software’s official channels for any further advisories or updates related to these vulnerabilities and ensure their IT security teams are equipped to implement the necessary patches promptly. The next expected step for affected users is the immediate application of the provided updates to neutralize the associated risks.