ctipilot.ch

Progress MOVEit Automation — unauthenticated auth bypass (CVSS 9.8)

cve · CVE-2026-4670

Coverage timeline
3
first 2026-05-06 → last 2026-05-17
Briefs
3
3 distinct
Sources cited
34
27 hosts
Sections touched
2
active_vulns, weekly_summary
Co-occurring entities
0
no co-occurrence

Story timeline

  1. 2026-05-17CTI Weekly Summary — 2026-W20 (May 11 – May 17, 2026)
    weekly_summaryConsolidated in weekly summary for 2026-W20
  2. 2026-05-10CTI Weekly Summary — 2026-W19 (May 04 – May 10, 2026)
    weekly_summaryConsolidated in weekly summary for week 2026-W19
  3. 2026-05-06CTI Daily Brief — 2026-05-06
    active_vulnsFirst coverage. Critical unauthenticated auth bypass on MOVEit Automation backend port; no ITW at disclosure but historical precedent demands emergency treatment; CERT-FR CERTFR-2026-AVI-0532.

Where this entity is cited

  • weekly_summary2
  • active_vulns1

Source distribution

  • attack.mitre.org4 (12%)
  • bleepingcomputer.com2 (6%)
  • cert.ssi.gouv.fr2 (6%)
  • nvd.nist.gov2 (6%)
  • wid.cert-bund.de2 (6%)
  • blog.talosintelligence.com1 (3%)
  • cisa.gov1 (3%)
  • dragos.com1 (3%)
  • other19 (56%)

External references

NVD · cve.org · CISA KEV

All cited sources (34)

Items in briefs about Progress MOVEit Automation — unauthenticated auth bypass (CVSS 9.8)

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.