CVE-2026-8485
Analyzed Analyzed - Analysis Complete

Uncontrolled Memory Allocation in Progress MOVEit Automation

Publication date: 2026-05-20

Last updated on: 2026-05-20

Assigner: Progress Software Corporation

Description
Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation allows Excessive Allocation. This issue affects MOVEit Automation: before 2025.0.11, from 2025.1.0 before 2025.1.7.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-05-20
Last Modified
2026-05-20
Generated
2026-06-30
AI Q&A
2026-05-20
EPSS Evaluated
2026-06-28
NVD
CVE-2026-8485
EUVD
EUVD-2026-31115

Affected Vendors & Products

Showing 2 associated CPEs
Vendor Product Version / Range
progress moveit_automation to 2025.0.11 (exc)
progress moveit_automation From 2025.1.0 (inc) to 2025.1.7 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-789 The product allocates memory based on an untrusted, large size value, but it does not ensure that the size is within expected limits, allowing arbitrary amounts of memory to be allocated.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

CVE-2026-8485 is an Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation. It involves improper memory management that allows an attacker to cause excessive memory consumption.

This excessive allocation can lead to denial-of-service conditions or other unintended system behavior.

Impact Analysis

The vulnerability can be exploited to cause excessive memory consumption, which may result in denial-of-service conditions.

This means the affected system could become unresponsive or crash, disrupting normal operations.

Mitigation Strategies

To mitigate the Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation, you should update MOVEit Automation to version 2026 or later, where this issue has been addressed as part of security fixes.

Compliance Impact

The provided information does not specify how the Uncontrolled Memory Allocation vulnerability in Progress Software MOVEit Automation affects compliance with common standards and regulations such as GDPR or HIPAA.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-8485. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart