Resource Management Flaw in Progress Software MOVEit Automation
CVE-2026-8488

4.3MEDIUM

Key Information:

Vendor: Progress Software
Status: Moveit Automation
Vendor: CVE Published:; 20 May 2026

🔔 Create Progress Software Vulnerability Alert

What is CVE-2026-8488?

A resource management vulnerability exists in Progress Software's MOVEit Automation. This flaw allows excessive allocation of resources due to inadequate throttling measures, which could lead to potential service disruptions. Users of MOVEit Automation versions before 2025.0.11 and from 2025.1.0 to before 2025.1.7 are particularly at risk. It is recommended that users update their products to mitigate the associated risks.

Affected Version(s)

MOVEit Automation 0 < 2025.0.11

MOVEit Automation 2025.1.0 < 2025.1.7

References

https://docs.progress.com/bundle/moveit-automation-releas...

vendor-advisory

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2026
Vulnerability Reserved
May 13, 2026

Credit

Airbus SecLab

Anaïs Gantet

Delphine Gourdou

Quentin Liddell

Matteo Ricordeau

CVE-2026-8488 Data

JSON