SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Progress MOVEit SQLi IOC Activity

Category: WEB-ATTACKS      

Progress MOVEit Transfer before 2021.0.6 (13.0.6), 2021.1.4 (13.1.4), 2022.0.4 (14.0.4), 2022.1.5 (14.1.5), and 2023.0.1 (15.0.1) is vulnerble to an SQL injection that could allow an unauthenticated attacker to gain access to MOVEit Transfer's database. This signature indicates a communication to a webshell in the compromised system. Please consider examining the destination host in case of hits are observed and the affected software is installed.


Relevant Information