Progress

223 tracked vulnerabilities.

CVE-2024-11626 HIGH
Progress Sitefinity < 14.4.8143 - XSS
Jan 07, 2025
CVSS 8.4
EPSS 0.00
CVE-2024-11625 HIGH
Progress Sitefinity < 14.4.8143 - Error Information Exposure
Jan 07, 2025
CVSS 7.7
EPSS 0.00
CVE-2024-12108 CRITICAL
Progress Whatsup Gold < 24.0.2 - Authentication Bypass by Spoofing
Dec 31, 2024
CVSS 9.6
EPSS 0.12
CVE-2024-12106 CRITICAL
Progress Whatsup Gold < 24.0.2 - Missing Authentication
Dec 31, 2024
CVSS 9.4
EPSS 0.13
CVE-2024-12105 MEDIUM
Progress Whatsup Gold < 24.0.2 - Path Traversal
Dec 31, 2024
CVSS 6.5
EPSS 0.08
CVE-2024-8785 CRITICAL
WhatsUp Gold <2024.0.1 - RCE
Dec 02, 2024
CVSS 9.8
EPSS 0.06
CVE-2024-46909 CRITICAL
WhatsUp Gold <2024.0.1 - RCE
Dec 02, 2024
CVSS 9.8
EPSS 0.32
CVE-2024-46908 HIGH
Progress Whatsup Gold < 24.0.1 - SQL Injection
Dec 02, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-46907 HIGH
Progress Whatsup Gold < 24.0.1 - SQL Injection
Dec 02, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-46906 HIGH
Progress Whatsup Gold < 24.0.1 - SQL Injection
Dec 02, 2024
CVSS 8.8
EPSS 0.18
CVE-2024-46905 HIGH
Progress Whatsup Gold < 24.0.1 - SQL Injection
Dec 02, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-8049 MEDIUM
Telerik Document Processing <2024.4.1106 - DoS
Nov 13, 2024
CVSS 6.5
EPSS 0.02
CVE-2024-7295 HIGH
Progress Telerik Report Server < 10.3.24.1112 - Hard-coded Credentials
Nov 13, 2024
CVSS 7.1
EPSS 0.00
CVE-2024-10013 HIGH
Telerik UI for WinForms <2024 Q4 - Code Injection
Nov 13, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-7763 CRITICAL
Progress Whatsup Gold < 24.0 - Authentication Bypass
Oct 24, 2024
CVSS 9.8
EPSS 0.00
CVE-2024-8755 HIGH
LoadMaster <7.2.60.1 - OS Command Injection
Oct 11, 2024
CVSS 8.4
EPSS 0.01
CVE-2024-8048 HIGH
In Progress Telerik Reporting <2024 Q3 - Code Injection
Oct 09, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-8015 CRITICAL
Telerik Report Server <2024 Q3 - RCE
Oct 09, 2024
CVSS 9.1
EPSS 0.01
CVE-2024-8014 HIGH
Telerik Reporting <2024 Q3 - Code Injection
Oct 09, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-7840 HIGH
Progress Telerik Reporting < 18.2.24.924 - Command Injection
Oct 09, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-7294 HIGH
Progress Telerik Reporting < 10.2.24.806 - Denial of Service
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7293 HIGH
Telerik Report Server <2024 Q3 - Info Disclosure
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7292 HIGH
Progress Telerik Report Server < 10.2.24.806 - Brute Force
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-6658 HIGH
LoadMaster <7.2.60.0 - OS Command Injection
Sep 12, 2024
CVSS 8.4
EPSS 0.00
CVE-2024-7654 HIGH
Progress Openedge < 11.7.19 - XSS
Sep 03, 2024
CVSS 8.3
EPSS 0.00
Products
whatsup_gold 56 ws_ftp_server 28 moveit_transfer 25 sitefinity 19 loadmaster 15 telerik_reporting 14 openedge 12 multi-tenant_loadmaster 7 telerik_report_server 7 telerik_ui_for_asp.net_ajax 5 sitefinity_cms 5 progress 5 telerik_ui_for_winforms 3 telerik_document_processing_libraries 3 openedge_innovation 2 datadirect_odbc_oracle_wire_protocol_driver 2 ecs_connection_manager 2 hybrid_data_pipeline 2 ipswitch_ws_ftp_server 2 moveit_automation 2 moveit_waf 2 multi-tenant_hypervisor 2 webspeed 2 webspeed_messenger 2 connection_manager_for_objectscale 1 kendo_ui_for_vue 1 kendo_ui 1 openedge_explorer 1 4gl_compiler 1 openedge_management 1
Quick Filters
Critical CVEs With Exploits In CISA KEV