{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-27T17:51:37.321","vulnerabilities":[{"cve":{"id":"CVE-2025-13147","sourceIdentifier":"security@progress.com","published":"2025-11-19T21:15:48.943","lastModified":"2026-06-17T08:33:34.557","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"Server-Side Request Forgery (SSRF) vulnerability in Progress MOVEit Transfer.This issue affects MOVEit Transfer: before 2024.1.8, from 2025.0.0 before 2025.0.4."}],"affected":[{"source":"security@progress.com","affectedData":[{"vendor":"Progress","product":"MOVEit Transfer","defaultStatus":"unaffected","versions":[{"version":"0","lessThan":"2024.1.8","versionType":"semver","status":"affected"},{"version":"2025.0.0","lessThan":"2025.0.4","versionType":"semver","status":"affected"}]}]}],"metrics":{"cvssMetricV31":[{"source":"security@progress.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N","baseScore":5.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"NONE","availabilityImpact":"NONE"},"exploitabilityScore":3.9,"impactScore":1.4}],"ssvcV203":[{"source":"134c704f-9b21-4f2e-91b3-4a467353bcc0","ssvcData":{"timestamp":"2025-11-19T20:49:54.892323Z","id":"CVE-2025-13147","options":[{"exploitation":"none"},{"automatable":"yes"},{"technicalImpact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}]},"weaknesses":[{"source":"security@progress.com","type":"Secondary","description":[{"lang":"en","value":"CWE-918"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*","versionEndExcluding":"2024.1.8","matchCriteriaId":"39B74C50-5145-49E3-AC0C-7BF14F4886D0"},{"vulnerable":true,"criteria":"cpe:2.3:a:progress:moveit_transfer:*:*:*:*:*:*:*:*","versionStartIncluding":"2025.0.0","versionEndExcluding":"2025.0.4","matchCriteriaId":"F8E7102F-7B5A-4617-9CDD-827DCCFB5BAF"}]}]}],"references":[{"url":"https://docs.progress.com/bundle/moveit-transfer-release-notes-2024/page/Fixed-Issues-in-2024.1.8.html","source":"security@progress.com","tags":["Release Notes"]},{"url":"https://docs.progress.com/bundle/moveit-transfer-release-notes-2025/page/Fixed-Issues-in-2025.0.4.html","source":"security@progress.com","tags":["Release Notes"]},{"url":"https://docs.progress.com/bundle/moveit-transfer-release-notes-2025_1/page/Fixed-Issues-in-2025.1.html","source":"security@progress.com","tags":["Release Notes"]}]}}]}