Cyber Posture

CVE-2026-8485

Medium
Microsoft: not affectedMSmacOS: not affectedMacLinux: not affectedLnxMobile: not affectedMobNetwork: not affectedNetApplication: affectedAppOther: not affectedOth

Published: 20 May 2026

Published
20 May 2026
Modified
20 May 2026
KEV Added
Patch
CVSS Score 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score N/A
Risk Priority 12 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2026-8485 is a medium-severity Memory Allocation with Excessive Size Value (CWE-789) vulnerability in Progress Moveit Automation. Its CVSS base score is 5.9 (Medium).

Operationally, it is not currently listed in the CISA KEV catalog.

NVD Description

Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.

Deeper analysisAI

Automated synthesis unavailable for this CVE.

Details

CWE(s)
CWE-789

Affected Products

progress
moveit automation
≤ 2025.0.11 · 2025.1.0 — 2025.1.7

References