CVE-2023-34362CISA KEV: Actively Exploited

Progress MOVEit Transfer SQL Injection Vulnerability

Published Jun 2, 2023·Updated Jun 2, 2023

Description

Progress MOVEit Transfer contains a SQL injection vulnerability that could allow an unauthenticated attacker to gain unauthorized access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database in addition to executing SQL statements that alter or delete database elements.

Public Exploits & PoCs17 found

PoC: CVE-2023-34362

CVE-2023-34362: MOVEit Transfer Unauthenticated RCE

6

PoC: CVE-2023-34362

MOVEit CVE-2023-34362

4

PoC: MOVEit-Exploit

an exploit of POC for CVE-2023-34362 affecting MOVEit Transfer

1

PoC: CVE-2023-34362

POC for CVE-2023-34362 affecting MOVEit Transfer

1

PoC: MOVEit_CVE-2023-34362_IOCs

CVE-2023-34362-IOCs. More information on Deep Instinct's blog site.

1

PoC: Multi-Stage-Exploitation-and-Detection-Engineering-Analysis-of-CVE-2023-34362-in-MOVEit-Transfer

This repository contains an academic and technical analysis of CVE-2023-34362, a critical SQL injection vulnerability affecting the MOVEit Transfer application, a widely used enterprise Managed File Transfer (MFT) platform. The project was developed as part of the CYB625 – Ethical Hacking & Penetration Testing course at Pace University.

PoC: MOVEit-Transfer-Data-Breach-Analysis.

​Detailed analysis of the 2023 MOVEit Transfer data breach (CVE-2023-34362) for CS50 Cybersecurity. This project explores the technical impact of unauthenticated SQL Injection and its consequences for global data privacy, affecting 2,700+ organizations. Special thanks to Professor David J. Malan and the CS50 staff.

PoC: moveit-transfer-2023-breach

MOVEit Transfer 2023 mass data breach (CVE-2023-34362)

PoC: CVE-2023-34362-Defense-Package

Threat-Informed Detection & Mitigation Package for MOVEit Transfer Vulnerability

PoC: MOVEit-CVE-2023-34362

This repository investigates the exploitation of CVE-2023-34362 in the MOVEit file transfer server by the TA505 (Cl0p) ransomware group. It explores the group's tactics and past campaigns targeting file transfer applications, aiming to enhance understanding and defensive measures against such threats.

PoC: CVE-2023-34362-RCE

Modified RCE with a remote shell and logging

PoC: MOVEit-CVE-2023-34362

A video presentation analysing the technical details, scale and lessons to be learned from the MOVEit CVE-2023=3462(CS50 Introduction to Cyber Security Finale Project)

PoC: moveit-payload-decrypt-CVE-2023-34362

This shellscript given the OrgKey 0 will parse the header of the base64 artifacts found in MOVEit Logs and decrypt the Serialized object used a payload

PoC: MOVEit-CVE-2023-34362

Repository with everything I have tracking the impact of MOVEit CVE-2023-34362

PoC: cve-2023-34362-iocs

CSV File Containing CVE-2023-34362 IOCs

PoC: CVE-2023-34362-nhjxn

An investigation into CVE-2023-34362.

PoC: CVE-2023-34362

An investigation into CVE-2023-34362.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free