Tag: cve 2026 4670

2 articles

Rows of computer servers and equipment in a server room, with a single terminal's blank screen in the foreground.

Progress Patches MOVEit Automation Flaw Enabling Authentication Bypass

Progress Software has patched critical vulnerabilities in MOVEit Automation, including an authentication bypass flaw rated CVSS 9.8, that could allow hackers to gain unauthorized access and control. The update fixes CVE-2026-4670 and CVE-2026-5174, protecting users from potential data exposure and administrative takeover.

Analyst 207May 4, 2026

Secure server room with prominent terminal display.

Progress Warns of MOVEit Automation Authentication Bypass Flaw

Progress Software has patched a critical authentication-bypass flaw in its MOVEit Automation product, and is strongly urging users to upgrade to the latest version to avoid low-complexity attacks by remote threat actors. Upgrading to version 2025.1.5, 2025.0.9, or 2024.1.8 and above will fix the vulnerability.

Analyst 207May 4, 2026