This section outlines issues tracked and fixed by the MOVEit product team for the 2023.1.3 Service Pack.

ID

Category

Fixed Issue
70162 Security Missing certificate validation in SAML2 library
70251 Database/Security Updated MySQL ODBC v8.0.26.
75426 Server/Security 'Schema version number must be updated' when upgrading Transfer and ignoring custom DB elements.
75595 REST/Security CVE-2025-11235: REST API password change mechanism missing enter-prior-password requirement.
75800 Security/Uploader Component: axios-0.21.4 has CVE Vulnerability CVE-2023-45857.
76124 Documentation MOVEit Transfer version 15.1 notice.txt file shows integration of MySQL client libraries v8.1.0.
76225 Server/Database Error uploading attachment when allowed to do so by group membership.
76506 Server/API Better argument handling to prevent sign-on name harvesting using machine interface and Gateway.
76688 Server/Security Input validation of parameter size needed.
76863 Server/Security Consistency check reporting errors for expired packages for replies not yet expired.