Fixed Issues in 2024.1.2
- Last Updated: March 19, 2025
- 1 minute read
- MOVEit Transfer
- Version 2024.1
- Documentation
This section outlines issues tracked and fixed by the MOVEit product team
for the 2024.1.2 Service Pack.
Note: See the What's New section for a broader summary of
features and improvements.
|
ID |
Category |
Fixed Issue |
|---|---|---|
| 80862 | Security/SFTP | A user configured as a 'shared account' with write-only access to a folder can list existing files in that folder. CVE-2025-2324 |
| 86489 | Database, Folders | SQL Server insert query fails with more than 1K virtual subfolders. |
| 83616 | Security, Certificate | Encrypted CA cert file not re-encrypted by system org key rotation. |
| 87521 | Install | Installer allows upgrades on unsupported OS. |
| 87843 | Security | Update MySQL with Oracle January critical patches. |
| 87901 | HTTPS/LiveView | HTTPS file upload to Webfarm cluster displays in LiveView as stalled transfer. |
| 88051 | Security | Issue handling user language change. |
| 88052 | Security | InvalidCastException on type conversion. |
| 88053 | Security, WAF | Transfer logs a potentially untrusted IP address when the X-Forwarded-For header contains list. |
| 88457 | Downloads, ISAPI | Download error when using MOVEitISAPI for files with comments. |
| 88538 | Downloads, ISAPI, Security | Failure to decrypt an upload comment while downloading using ISAPI results in malformed data. |
| 88552 | Security | Weak password recovery mechanism |
| 88604 | Config Utility | Long passwords fail for UNC paths. |
| 88624 | Security | Upgrade Visual C++ Redistributable Installer. |
| 88965 | Security, Utilities | 7-Zip mark-of-the-web vulnerability. |