Filtered by vendor Progress Software Subscriptions
Filtered by product Flowmon Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2026-8079 1 Progress Software 1 Flowmon 2026-07-02 N/A
In Progress Flowmon versions prior to 12.5.9 and 13.0.11, a vulnerability exists whereby an authenticated low-privileged user may craft a request during the PDF generation process that results in operations being performed with the privileges of another user, potentially leading to unauthorized access to sensitive data and unintended modifications to system configuration.
CVE-2026-2737 2 Progress, Progress Software 2 Flowmon, Flowmon 2026-04-21 6.1 Medium
A vulnerability exists in Progress Flowmon versions prior to 12.5.8 and 13.0.6, whereby an administrator who clicks a malicious link provided by an attacker may inadvertently trigger unintended actions within their authenticated web session.
CVE-2026-3692 2 Progress, Progress Software 2 Flowmon, Flowmon 2026-04-08 8.8 High
In Progress Flowmon versions prior to 12.5.8, a vulnerability exists whereby an authenticated low-privileged user may craft a request during the report generation process that results in unintended commands being executed on the server.