CVE-2026-3692

High CVSS: 8.7

In Progress Flowmon versions prior to 12.5.8, a vulnerability exists whereby an authenticated low-privileged user may craft a request during the report generation process that results in unintended commands being executed on the server.

Vendor

Product

CWE

CWE-78

Yayın Tarihi

2026-04-02 14:16:32

Güncelleme

2026-04-03 16:10:52

Source Identifier

security@progress.com

KEV Date Added

Kategoriler

CWE-78 HIGH 2026

Referanslar

https://community.progress.com/s/article/CVE-2026-3692-Progress-Flowmon