CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0CVE-2024-7346 – Client connections using default TLS certificates from OpenEdge may bypass TLS host name validation
https://notcve.org/view.php?id=CVE-2024-7346
03 Sep 2024 — Host name validation for TLS certificates is bypassed when the installed OpenEdge default certificates are used to perform the TLS handshake for a networked connection. This has been corrected so that default certificates are no longer capable of overriding host name validation and will need to be replaced where full TLS certificate validation is needed for network security. The existing certificates should be replaced with CA-signed certificates from a recognized certificate authority that contain the nece... • https://community.progress.com/s/article/Client-connections-using-default-TLS-certificates-from-OpenEdge-may-bypass-TLS-host-name-validation • CWE-297: Improper Validation of Certificate with Host Mismatch •
CVSS: 9.6EPSS: 1%CPEs: 2EXPL: 0CVE-2024-7345 – Direct local client connections to MS Agents can bypass authentication
https://notcve.org/view.php?id=CVE-2024-7345
03 Sep 2024 — Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms • https://community.progress.com/s/article/Direct-local-client-connections-to-MS-Agents-can-bypass-authentication • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 8.3EPSS: 0%CPEs: 3EXPL: 0CVE-2024-7654 – Unauthenticated Content Injection in OpenEdge Management web interface via ActiveMQ discovery service
https://notcve.org/view.php?id=CVE-2024-7654
03 Sep 2024 — An ActiveMQ Discovery service was reachable by default from an OpenEdge Management installation when an OEE/OEM auto-discovery feature was activated. Unauthorized access to the discovery service's UDP port allowed content injection into parts of the OEM web interface making it possible for other types of attack that could spoof or deceive web interface users. Unauthorized use of the OEE/OEM discovery service was remediated by deactivating the discovery service by default. • https://community.progress.com/s/article/Unauthenticated-Content-Injection-in-OpenEdge-Management-web-interface-via-ActiveMQ-discovery-service • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 10.0EPSS: 63%CPEs: 3EXPL: 1CVE-2024-1403 – Authentication Bypass in OpenEdge Authentication Gateway and AdminServer
https://notcve.org/view.php?id=CVE-2024-1403
27 Feb 2024 — In OpenEdge Authentication Gateway and AdminServer prior to 11.7.19, 12.2.14, 12.8.1 on all platforms supported by the OpenEdge product, an authentication bypass vulnerability has been identified. The vulnerability is a bypass to authentication based on a failure to properly handle username and password. Certain unexpected content passed into the credentials can lead to unauthorized access without proper authentication. En OpenEdge Authentication Gateway y AdminServer anteriores a 11.7.19, 12.2.14, 12.8.1 e... • https://github.com/horizon3ai/CVE-2024-1403 • CWE-305: Authentication Bypass by Primary Weakness •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2023-40052 – Progress Application Server (PAS) for OpenEdge Denial of Service
https://notcve.org/view.php?id=CVE-2023-40052
18 Jan 2024 — This issue affects Progress Application Server (PAS) for OpenEdge in versions 11.7 prior to 11.7.18, 12.2 prior to 12.2.13, and innovation releases prior to 12.8.0 . An attacker who can produce a malformed web request may cause the crash of a PASOE agent potentially disrupting the thread activities of many web application clients. Multiple of these DoS attacks could lead to the flooding of invalid requests as compared to the server’s remaining ability to process valid requests. Este problema afecta a Progre... • https://community.progress.com/s/article/Important-Progress-OpenEdge-Product-Alert-for-Progress-Application-Server-for-OpenEdge-PASOE-Denial-of-Service-Vulnerability-in-WEB-Transport • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.9EPSS: 0%CPEs: 3EXPL: 0CVE-2023-40051 – Progress Application Server (PAS) for OpenEdge File Upload via Directory Traversal
https://notcve.org/view.php?id=CVE-2023-40051
18 Jan 2024 — This issue affects Progress Application Server (PAS) for OpenEdge in versions 11.7 prior to 11.7.18, 12.2 prior to 12.2.13, and innovation releases prior to 12.8.0. An attacker can formulate a request for a WEB transport that allows unintended file uploads to a server directory path on the system running PASOE. If the upload contains a payload that can further exploit the server or its network, the launch of a larger scale attack may be possible. Este problema afecta a Progress Application Server (PAS) para... • https://community.progress.com/s/article/Important-Progress-OpenEdge-Critical-Alert-for-Progress-Application-Server-in-OpenEdge-PASOE-Arbitrary-File-Upload-Vulnerability-in-WEB-Transport • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.0EPSS: 13%CPEs: 5EXPL: 0CVE-2023-34203
https://notcve.org/view.php?id=CVE-2023-34203
23 Jun 2023 — In Progress OpenEdge OEM (OpenEdge Management) and OEE (OpenEdge Explorer) before 12.7, a remote user (who has any OEM or OEE role) could perform a URL injection attack to change identity or role membership, e.g., escalate to admin. This affects OpenEdge LTS before 11.7.16, 12.x before 12.2.12, and 12.3.x through 12.6.x before 12.7. • https://www.progress.com/openedge • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-29849
https://notcve.org/view.php?id=CVE-2022-29849
01 May 2022 — In Progress OpenEdge before 11.7.14 and 12.x before 12.2.9, certain SUID binaries within the OpenEdge application were susceptible to privilege escalation. If exploited, a local attacker could elevate their privileges and compromise the affected system. En Progress OpenEdge versiones anteriores a 11.7.14 y versiones 12.x anteriores a 12.2.9, determinados binarios SUID dentro de la aplicación OpenEdge eran susceptibles de escalar privilegios. Si es explotado, un atacante local podría elevar sus privilegios y... • https://community.progress.com/s/article/OpenEdge-11-7-14-is-Now-Available •
CVSS: 9.8EPSS: 0%CPEs: 10EXPL: 0CVE-2015-9245
https://notcve.org/view.php?id=CVE-2015-9245
31 Oct 2017 — Insecure default configuration in Progress Software OpenEdge 10.2x and 11.x allows unauthenticated remote attackers to specify arbitrary URLs from which to load and execute malicious Java classes via port 20931. Una configuración por defecto insegura en Progress Software OpenEdge, en sus versiones 10.2x y 11.x permite que atacantes remotos no autenticados especifiquen URL arbitrarios desde los que cargar y ejecutar clases Java maliciosas mediante el puerto 20931. • https://knowledgebase.progress.com/articles/Article/How-to-prevent-Java-RMI-class-loader-exploit-with-AdminServer • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 5CVE-2014-8555 – Progress OpenEdge 11.2 - Directory Traversal
https://notcve.org/view.php?id=CVE-2014-8555
11 Nov 2014 — Directory traversal vulnerability in report/reportViewAction.jsp in Progress Software OpenEdge 11.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the selection parameter. Vulnerabilidad de salto de directorio en report/reportViewAction.jsp en Progress Software OpenEdge 11.2 permite a atacantes remotos leer ficheros arbitrarios a través de un .. (punto punto) en el parámetro selection. Progress OpenEdge version 11.2 suffers from a directory traversal vulnerability. • https://packetstorm.news/files/id/129052 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •