cbcvebase.
CVE-2025-10932
published 2025-10-29

CVE-2025-10932: Uncontrolled Resource Consumption vulnerability in Progress MOVEit Transfer (AS2 module).This issue affects MOVEit Transfer: from 2025.0.0 before 2025.0.3…

PriorityP343high8.2CVSS 3.1
AVNACLPRNUINSUCNILAH
EPSS
0.47%
36.9th percentile
Uncontrolled Resource Consumption vulnerability in Progress MOVEit Transfer (AS2 module).This issue affects MOVEit Transfer: from 2025.0.0 before 2025.0.3, from 2024.1.0 before 2024.1.7, from 2023.1.0 before 2023.1.16.

Affected

6 ranges
VendorProductVersion rangeFixed in
msrccbl_mariner_1.0_arm
msrccbl_mariner_1.0_x64
msrccm1_lldpad_1.1-1_on_cbl_mariner_1.0
progressmoveit_transfer>= 2023.1.0 < 2023.1.162023.1.16
progressmoveit_transfer>= 2024.1.0 < 2024.1.72024.1.7
progressmoveit_transfer>= 2025.0.0 < 2025.0.32025.0.3

CVSS provenance

nvdv3.18.2HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
vendor_msrc4.3MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.