Progress

223 tracked vulnerabilities.

CVE-2026-2878 MEDIUM
Progress Telerik UI for AJAX <2026.1.225 - Info Disclosure
Feb 25, 2026
CVSS 5.3
EPSS 0.00
CVE-2025-13447 HIGH
Progress Connection Manager For Objectscale* - OS Command Injection
Jan 13, 2026
CVSS 8.4
EPSS 0.00
CVE-2025-13444 HIGH
Progress Connection Manager For Objectscale - OS Command Injection
Jan 13, 2026
CVSS 8.4
EPSS 0.00
CVE-2025-13774 HIGH
Progress Flowmon Anomaly Detection System < 12.5.4 - SQL Injection
Jan 13, 2026
CVSS 8.8
EPSS 0.00
CVE-2025-11235 LOW
Progress MOVEit Transfer <2023.1.3-2022.0.10 - Unverified Password ...
Jan 07, 2026
CVSS 3.7
EPSS 0.00
CVE-2025-13147 MEDIUM
Progress Moveit Transfer < 2024.1.8 - SSRF
Nov 19, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-6505 HIGH
Progress Hybrid Data Pipeline < 4.6.2.3275 - Authentication Bypass
Jul 29, 2025
CVSS 8.1
EPSS 0.00
CVE-2025-6504 HIGH
HDP Server <4.6.2.2978 - Privilege Escalation
Jul 29, 2025
CVSS 8.4
EPSS 0.00
CVE-2025-3600 HIGH
Progress Telerik UI For Asp.net Ajax < 2025.1.218 - Denial of Service
May 14, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-2572 MEDIUM
Progress Whatsup Gold < 24.0.3 - Authentication Bypass
Apr 14, 2025
CVSS 5.6
EPSS 0.00
CVE-2025-2324 MEDIUM
Progress Moveit Transfer < 2023.1.12 - Improper Privilege Management
Mar 19, 2025
CVSS 5.9
EPSS 0.00
CVE-2025-1758 MEDIUM
Progress LoadMaster <7.2.40.0 - Buffer Overflow
Mar 19, 2025
CVSS 4.3
EPSS 0.00
CVE-2024-6097 MEDIUM
Progress Telerik Reporting < 19.0.25.211 - Path Traversal
Feb 12, 2025
CVSS 5.3
EPSS 0.00
CVE-2024-11629 HIGH
Telerik Document Processing <2025.1.205 - Path Traversal
Feb 12, 2025
CVSS 7.1
EPSS 0.01
CVE-2024-11628 MEDIUM
Telerik Kendo UI for Vue <6.0.1 - Command Injection
Feb 12, 2025
CVSS 4.1
EPSS 0.00
CVE-2025-0556 HIGH
Telerik Report Server <2025 Q1 (11.0.25.211) - Info Disclosure
Feb 12, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-0332 HIGH
Telerik UI for WinForms <2025.1.211 - Path Traversal
Feb 12, 2025
CVSS 7.8
EPSS 0.00
CVE-2024-12629 MEDIUM
Progress Kendoreact < 9.4.0 - Prototype Pollution
Feb 12, 2025
CVSS 4.1
EPSS 0.00
CVE-2024-11343 HIGH
Telerik Document Processing <2025.1.205 - Path Traversal
Feb 12, 2025
CVSS 8.3
EPSS 0.01
CVE-2024-56135 HIGH
Progress Multi-tenant Loadmaster - Improper Input Validation
Feb 05, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-56134 HIGH
Progress Multi-tenant Loadmaster - Improper Input Validation
Feb 05, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-56133 HIGH
Progress Multi-tenant Loadmaster - Improper Input Validation
Feb 05, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-56132 HIGH
Progress Multi-tenant Loadmaster < 7.1.35.13 - OS Command Injection
Feb 05, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-56131 HIGH
Progress Multi-tenant Loadmaster - Improper Input Validation
Feb 05, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-11627 MEDIUM
Progress Sitefinity < 14.4.8143 - Insufficient Session Expiration
Jan 07, 2025
CVSS 6.8
EPSS 0.00
Products
whatsup_gold 56 ws_ftp_server 28 moveit_transfer 25 sitefinity 19 loadmaster 15 telerik_reporting 14 openedge 12 multi-tenant_loadmaster 7 telerik_report_server 7 telerik_ui_for_asp.net_ajax 5 sitefinity_cms 5 progress 5 telerik_ui_for_winforms 3 telerik_document_processing_libraries 3 openedge_innovation 2 datadirect_odbc_oracle_wire_protocol_driver 2 ecs_connection_manager 2 hybrid_data_pipeline 2 ipswitch_ws_ftp_server 2 moveit_automation 2 moveit_waf 2 multi-tenant_hypervisor 2 webspeed 2 webspeed_messenger 2 connection_manager_for_objectscale 1 kendo_ui_for_vue 1 kendo_ui 1 openedge_explorer 1 4gl_compiler 1 openedge_management 1
Quick Filters
Critical CVEs With Exploits In CISA KEV