Unrated severityNVD Advisory· Published Feb 14, 2020· Updated Aug 4, 2024
CVE-2020-8612
CVE-2020-8612
Description
In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2019.2.1, a REST API endpoint failed to adequately sanitize malicious input, which could allow an authenticated attacker to execute arbitrary code in a victim's browser, aka XSS.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Progress/MOVEit Transferdescription
- Range: >=2019.1 <2019.1.4 || >=2019.2 <2019.2.1
Patches
Vulnerability mechanics
References
4- community.ipswitch.com/s/article/MOVEit-Transfer-Security-Vulnerabilities-Feb-2020mitrex_refsource_MISC
- docs.ipswitch.com/MOVEit/Transfer2019_1/ReleaseNotes/en/index.htmmitrex_refsource_CONFIRM
- docs.ipswitch.com/MOVEit/Transfer2019_2/ReleaseNotes/en/index.htmmitrex_refsource_CONFIRM
- status.moveitcloud.commitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.