CVE Catalog

CVE-2026-4670

Critical
Published: Translated: NVD NIST

Summary

CVE-2026-4670 vulnerability in MOVEit Automation allows for authentication bypass. This affects versions from 2025.0.0 before 2025.0.9, from 2024.0.0 before 2024.1.8, and versions prior to 2024.0.0.

Risk Assessment

Authentication bypass can lead to unauthorized access to the system, posing a serious threat to the organization's data security.

Recommendation

It is recommended to update MOVEit Automation to the latest version to mitigate this vulnerability and secure the system against unauthorized access.

Original NVD description (English source)

Authentication bypass by primary weakness vulnerability in Progress Software MOVEit Automation allows Authentication Bypass. This issue affects MOVEit Automation: from 2025.0.0 before 2025.0.9, from 2024.0.0 before 2024.1.8, versions prior to 2024.0.0.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS