← volver
CVE-2023-34362

CVE-2023-34362

CVSS 9.8 CRITICALEPSS 99.9%● KEVCWE-89
En resumen

MOVEit Transfer tiene una falla de inyección SQL que permite a atacantes sin credenciales acceder y manipular la base de datos. Este es un problema crítico porque los atacantes pueden robar datos sensibles o destruir información almacenada en el sistema.

Detalle técnico

Vulnerabilidad de inyección SQL no autenticada en la aplicación web MOVEit Transfer permite a atacantes ejecutar consultas SQL arbitrarias contra la base de datos backend (MySQL, MSSQL o Azure SQL) mediante solicitudes HTTP/HTTPS. Los atacantes pueden enumerar la estructura de la base de datos, extraer información sensible o modificar/eliminar elementos; se han observado explotaciones en entornos de producción desde mayo de 2023.

Resumen generado y traducido por IA a partir de la descripción oficial.
In Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1), a SQL injection vulnerability has been found in the MOVEit Transfer web application that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database. Depending on the database engine being used (MySQL, Microsoft SQL Server, or Azure SQL), an attacker may be able to infer information about the structure and contents of the database, and execute SQL statements that alter or delete database elements. NOTE: this is exploited in the wild in May and June 2023; exploitation of unpatched systems can occur via HTTP or HTTPS. All versions (e.g., 2020.0 and 2019x) before the five explicitly mentioned versions are affected, including older unsupported versions.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Productos afectados
n/a · n/a
PoCs públicas encontradas16
githubgithub.com/horizon3ai/CVE-2023-34362138githubgithub.com/sfewer-r7/CVE-2023-3436264githubgithub.com/Malwareman007/CVE-2023-3436210githubgithub.com/kenbuckler/MOVEit-CVE-2023-343626githubgithub.com/errorfiathck/MOVEit-Exploit2githubgithub.com/deepinstinct/MOVEit_CVE-2023-34362_IOCs2githubgithub.com/horrister/moveit-transfer-cve-2023-343621githubgithub.com/toorandom/moveit-payload-decrypt-CVE-2023-343621githubgithub.com/KarmanyaT28/Multi-Stage-Exploitation-and-Detection-Engineering-Analysis-of-CVE-2023-34362-in-MOVEit-Transfer0githubgithub.com/glen-pearson/MoveIT-CVE-2023-34362-RCE0githubgithub.com/aditibv/MOVEit-CVE-2023-343620githubgithub.com/Naveenbana5250/CVE-2023-34362-Defense-Package0githubgithub.com/khengar9274-web/moveit-transfer-2023-breach0githubgithub.com/tubaaiftikhar-ui/MOVEit-Transfer-Data-Breach-Analysis.0cve_referencepacketstormsecurity.com/files/172883/MOVEit-Transfer-SQL-Injection-Remote-Code-Execution.htmlno verificadocve_referencepacketstormsecurity.com/files/173110/MOVEit-SQL-Injection.htmlno verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://packetstormsecurity.com/files/172883/MOVEit-Transfer-SQL-Injection-Remote-Code-Execution.htmlhttp://packetstormsecurity.com/files/173110/MOVEit-SQL-Injection.htmlhttps://community.progress.com/s/article/MOVEit-Transfer-Critical-Vulnerability-31May2023https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-34362