CVE-2026-8487

MEDIUM NVD

CVSS Score 6.5

Severity MEDIUM

Published May 20, 2026

Vendor unknown

Description

Incorrect default permissions vulnerability in Progress Software MOVEit Automation allows Retrieve Embedded Sensitive Data. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.

References

https://docs.progress.com/bundle/moveit-automation-release-notes-2026/page/Fixed-Issues-2026.html