KEVIntel
Back to KEVs
9.8
CVSS
Critical

CVE-2023-34362

PUBLISHED

In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL...

Exploited in the wild Used in malware Remote Low complexity No user interaction
Vendor
Progress
Product
MOVEit Transfer
Published
Jun 02, 2023
EPSS

Description

In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database, and execute SQL statements that alter or delete database elements. NOTE: this is exploited in the wild in May and June 2023; exploitation of unpatched systems can occur via HTTP or HTTPS. All versions (e.g., 2020.0 and 2019x) before the five explicitly mentioned versions are affected, including older unsupported versions.

mysql cisa malware ransomware nuclei_scanner metasploit

CVSS scores

CVSS v3.1 9.8 Critical

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitation status

Exploited in the wild

Recorded 2023-06-02 00:00:00 UTC · Source

Used in malware

Recorded 2023-06-02 00:00:00 UTC · Source

SSVC decision points

Exploitation
active
Automatable
Yes
Technical impact
total

References

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source Added
CISA Jun 02, 2023

Scanner integrations

Scanner Reference Detected
Metasploit https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/moveit_cve_2023_34362.rb Apr 28, 2025
Nuclei https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2023/CVE-2023-34362.yaml Apr 25, 2025

Potential proof of concepts

These PoCs are unverified and could contain malware. Use at your own risk.

moveit_cve_2023_34362

metasploit · Created Unknown

Metasploit module for CVE-2023-34362

toorandom/moveit-payload-decrypt-CVE-2023-34362

github · Created 2023-07-18 15:58:00 UTC · 1 stars

This shellscript given the OrgKey 0 will parse the header of the base64 artifacts found in MOVEit Logs and decrypt the Serialized object used a payload

Malwareman007/CVE-2023-34362

github · Created 2023-07-09 18:44:22 UTC · 10 stars

POC for CVE-2023-34362 affecting MOVEit Transfer

kenbuckler/MOVEit-CVE-2023-34362

github · Created 2023-06-16 00:39:37 UTC · 5 stars

Repository with everything I have tracking the impact of MOVEit CVE-2023-34362

sfewer-r7/CVE-2023-34362

github · Created 2023-06-12 12:56:12 UTC · 64 stars

CVE-2023-34362: MOVEit Transfer Unauthenticated RCE

horizon3ai/CVE-2023-34362

github · Created 2023-06-09 19:07:32 UTC · 140 stars

MOVEit CVE-2023-34362

deepinstinct/MOVEit_CVE-2023-34362_IOCs

github · Created 2023-06-06 15:33:49 UTC · 2 stars

CVE-2023-34362-IOCs. More information on Deep Instinct's blog site.

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Exploit Used in Malware

  • Added to KEVIntel

  • Detected by Nuclei

  • Detected by Metasploit