Known Vulnerabilities for MOVEit WAF by Progress Software
Listed below are 6 of the newest known vulnerabilities associated with "MOVEit WAF" by "Progress Software".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-8488 json | Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation allows Excessive Al... | Not Provided | 2026-05-20 | 2026-05-20 |
| CVE-2026-8487 json | Incorrect default permissions vulnerability in Progress Software MOVEit Automation allows Retrieve Embedded Sensitive Data. ... | Not Provided | 2026-05-20 | 2026-05-20 |
| CVE-2026-8486 json | Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation allows Flooding. T... | Not Provided | 2026-05-20 | 2026-05-20 |
| CVE-2026-8485 json | Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue ... | Not Provided | 2026-05-20 | 2026-05-20 |
| CVE-2026-5174 json | Improper input validation vulnerability in Progress Software MOVEit Automation allows Privilege Escalation. This issue affec... | Not Provided | 2026-04-30 | 2026-05-01 |
| CVE-2026-4670 json | Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass. ... | Not Provided | 2026-04-30 | 2026-05-01 |