Two of the bugs allow for unauthenticated access and modification privileges for MOVEit Transfer database content, while the third would allow an attacker to terminate instances of the application at will. A security bulletin from the company lists all three as critical or high severity.
Article Link: Progress Software flags three new vulnerabilities in MOVEit Transfer | SC Media