Fixed Issues 2025.0.11
- Last Updated: May 14, 2026
- 1 minute read
- MOVEit Automation
- Version 2025
- Documentation
The following issues were fixed in MOVEit Automation 2025.0.11.
|
ID |
Category |
Fixed Issue |
|---|---|---|
|
101151 |
Security, Server |
CVE-2026-8485: Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation. |
|
101152 |
Security, Endpoints, Server |
CVE-2026-8486: Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation. |
|
101153 |
Security |
CVE-2026-8487: Incorrect default permissions vulnerability in Progress Software MOVEit Automation. |
|
101156 |
Security, Server |
CVE-2026-8488: Allocation of resources without limits or throttling vulnerability in Progress Software MOVEit Automation. |
|
103759 |
SSO, SAML |
Error messages are now logged when Web Admin verification fails. |
|
103818 |
HTTPS |
Public key requests from the Server to Web Admin now correctly ignore environment‑level proxy settings, preventing connection issues. |
|
101036, 101192, 101193, 101302, 101612, 102638, 103555 |
Security, Web Admin, Server, Database |
Multiple third-party components used by MOVEit Automation have been updated to newer supported versions, including Spring Security, Spring Boot, OpenSSL, Tomcat, OpenJDK, libcurl, Bouncy Castle, and selected JavaScript libraries. These updates improve overall security and prevent potential vulnerabilities. |