Critical MOVEit Automation vulnerabilities allow authentication bypass and privilege escalation

Progress Software has patched two serious MOVEit Automation vulnerabilities that can let attackers bypass authentication, escalate privileges, and potentially gain administrative control of affected systems. The flaws are tracked as CVE-2026-4670 and CVE-2026-5174. The first is a critical authentication bypass issue with a CVSS score of 9.8, while the second is a high-severity privilege escalation […] The post Critical MOVEit Automation vulnerabilities allow authentication bypass and privilege escalation appeared first on VPN Central.