CVE-2023-34362 Progress CVE debrief

Who should care

Organizations running Progress MOVEit Transfer, especially security teams, vulnerability management teams, and incident responders responsible for externally exposed file transfer systems.

Technical summary

The supplied records identify CVE-2023-34362 as a SQL injection issue in Progress MOVEit Transfer. CISA’s KEV entry classifies it as known exploited, with a remediation due date of 2023-06-23 and a note pointing to CISA AA23-158A for associated indicators of compromise.

Defensive priority

Urgent. This is a CISA-known exploited vulnerability with a short remediation window and documented ransomware-campaign association in the supplied metadata.

Recommended defensive actions

• Apply updates per vendor instructions.
• Review CISA AA23-158A for associated IOCs and use them to assess your environment.
• Prioritize any internet-facing Progress MOVEit Transfer deployments for immediate remediation and verification.
• Confirm whether the affected product is present in your environment and track remediation to completion before the KEV due date.

Evidence notes

Based only on the supplied CISA KEV feed item, the CVE record metadata, and official reference links. The source metadata states vendor Project Progress, product MOVEit Transfer, vulnerability type SQL injection, known exploitation, known ransomware campaign use, date added 2023-06-02, due date 2023-06-23, and a pointer to CISA AA23-158A for IOCs.

Official resources