Progress MOVEit Automation — authenticated privilege escalation (CVSS 8.8)
cve · CVE-2026-5174
Coverage timeline
1
first 2026-05-06 → last 2026-05-06
Briefs
1
1 distinct
Sources cited
9
7 hosts
Sections touched
1
active_vulns
Co-occurring entities
0
no co-occurrence
Story timeline
- 2026-05-06CTI Daily Brief — 2026-05-06
Where this entity is cited
- active_vulns1
Source distribution
- cert.ssi.gouv.fr2 (22%)
- nvd.nist.gov2 (22%)
- dragos.com1 (11%)
- helpnetsecurity.com1 (11%)
- microsoft.com1 (11%)
- thehackernews.com1 (11%)
- wiz.io1 (11%)
External references
All cited sources (9)
- nvd.nist.govprimaryinlineNVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-5174
- nvd.nist.govprimaryinlineNVDhttps://nvd.nist.gov/vuln/detail/CVE-2026-6023
- cert.ssi.gouv.frinlineCERT-FR, 2026-05-05https://www.cert.ssi.gouv.fr/
- cert.ssi.gouv.frinlineCERT-FR, 2026-05-06https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0542/
- dragos.cominlineDragos, 2026-05-06https://www.dragos.com/blog/ai-assisted-ics-attack-water-utility/
- helpnetsecurity.cominlineHelp Net Security, 2026-05-04https://www.helpnetsecurity.com/2026/05/04/critical-moveit-automation-auth-bypass-vulnerability-fixed-cve-2026-4670/
- microsoft.cominlineMicrosoft Threat Intelligence, 2026-05-04https://www.microsoft.com/en-us/security/blog/2026/05/04/breaking-the-code-multi-stage-code-of-conduct-phishing-campaign-leads-to-aitm-token-compromise/
- thehackernews.cominlineThe Hacker News, 2026-05-04https://thehackernews.com/2026/05/progress-patches-critical-moveit.html
- wiz.ioinlineWiz Researchhttps://www.wiz.io/blog/dirty-frag-linux-kernel-local-privilege-escalation-via-esp-and-rxrpc
Items in briefs about Progress MOVEit Automation — authenticated privilege escalation (CVSS 8.8)
No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.