This section outlines issues tracked and fixed by the MOVEit product team for the 2026.0.1 Hotfix.
Note: See the What's New section for a broader summary of features and improvements.

ID

Category

Fixed Issue

104125 SFTP, Performance CVE-2026-10699: Fixed memory leak in MOVEit SFTP service.
105429 Database, Performance Removed unneeded variable type conversion.
104590 Reports, Security CVE-2026-10698: Fixed issue where AuditUser could escalate privileges from Custom Reports module.
104591 Reports, MS SQL Fixed issue where File Transfer Download Activity report returned error when querying MS SQL database.
104690 Ad Hoc, Security CVE-2026-11903: Fixed XSS vulnerability in Ad Hoc module.