CVE-2024-2291MEDIUMCVSS 4.3≥ 2022.0.0 (14.0.0), < 2022.0.11 (14.0.11)·≥ 2022.1.0 (14.1.0), < 2022.1.12 (14.1.12)+2 more2024-03-20
CVE-2024-2291 [MEDIUM] CWE-778 CVE-2024-2291:
In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11), 2022.1.12 (14.1.12), 2023
In Progress MOVEit Transfer versions released before 2022.0.11 (14.0.11), 2022.1.12 (14.1.12), 2023.0.9 (15.0.9), 2023.1.4 (15.1.4), a logging bypass vulnerability has been discovered. An authenticated user could manipulate a request to bypass the logging mechanism within the web application which results in user activity not being logged properly.
cvelistv5nvd