Critical severity9.8NVD Advisory· Published May 18, 2017· Updated Jun 17, 2026
CVE-2017-6195
CVE-2017-6195
Description
Ipswitch MOVEit Transfer (formerly DMZ) allows pre-authentication blind SQL injection. The fixed versions are MOVEit Transfer 2017 9.0.0.201, MOVEit DMZ 8.3.0.30, and MOVEit DMZ 8.2.0.20.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
6cpe:2.3:a:ipswitch:moveit_dmz:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:ipswitch:moveit_dmz:*:*:*:*:*:*:*:*range: <=8.1
- cpe:2.3:a:ipswitch:moveit_dmz:8.2:*:*:*:*:*:*:*
- cpe:2.3:a:ipswitch:moveit_dmz:8.3:*:*:*:*:*:*:*
- (no CPE)
cpe:2.3:a:ipswitch:moveit_transfer_2017:9.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:ipswitch:moveit_transfer_2017:9.0:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
2- ft.ipswitch.com/rs/751-HBN-596/images/Ipswitch-Security-Bulletin-FT-Vulnerability.pdfnvdPatchVendor Advisory
- www.siberas.de/assets/papers/ssa-1705_IPSWITCH_SQLinjection.txtnvdThird Party Advisory
News mentions
0No linked articles in our index yet.