← voltar
CVE-2026-3692

Unintended command execution during report generation in Progress Flowmon

CVSS 8.7 HIGHEPSS 0.4%CWE-78
In Progress Flowmon versions prior to 12.5.8, a vulnerability exists whereby an authenticated low-privileged user may craft a request during the report generation process that results in unintended commands being executed on the server.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Progress Software · Flowmon

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://community.progress.com/s/article/CVE-2026-3692-Progress-Flowmon