progress

261 tracked vulnerabilities.

CVE-2024-7763 CRITICAL
WhatsUp Gold < 24.0 - Authentication Bypass
Oct 24, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-8755 HIGH
LoadMaster <7.2.60.1 - OS Command Injection
Oct 11, 2024
CVSS 8.4
EPSS 0.01
CVE-2024-8048 HIGH
In Progress Telerik Reporting <2024 Q3 - Code Injection
Oct 09, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-8015 CRITICAL
Telerik Report Server <2024 Q3 - RCE
Oct 09, 2024
CVSS 9.1
EPSS 0.01
CVE-2024-8014 HIGH
Telerik Reporting <2024 Q3 - Code Injection
Oct 09, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-7840 HIGH
Progress Telerik Reporting < 18.2.24.924 - Command Injection via Hyperlink Element
Oct 09, 2024
CVSS 7.8
EPSS 0.01
CVE-2024-7294 HIGH
Telerik Report Server < 10.2.24.806 - Unauthenticated Denial of Service via HTTP Request Flooding
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7293 HIGH
Telerik Report Server <2024 Q3 - Info Disclosure
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-7292 HIGH
Progress Telerik Report Server < 10.2.24.806 - Credential Stuffing via Excessive Login Attempts
Oct 09, 2024
CVSS 7.5
EPSS 0.00
CVE-2024-6658 HIGH
LoadMaster <7.2.60.0 - OS Command Injection
Sep 12, 2024
CVSS 8.4
EPSS 0.01
CVE-2024-7654 HIGH
Progress OpenEdge < 11.7.19 and 12.2-12.2.14 - Unauthenticated Content Injection via ActiveMQ Discovery Service
Sep 03, 2024
CVSS 8.3
EPSS 0.00
CVE-2024-7346 HIGH
OpenEdge - Host Name Validation Bypass
Sep 03, 2024
CVSS 7.2
EPSS 0.00
CVE-2024-7345 HIGH
Progress OpenEdge < 11.7.18 - Unauthenticated Code Injection via Local ABL Client
Sep 03, 2024
CVSS 8.3
EPSS 0.01
CVE-2024-6672 HIGH
WhatsUp Gold <2024.0.0 - Privilege Escalation
Aug 29, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-6671 CRITICAL NUCLEI
WhatsUp Gold <2024.0.0 - SQL Injection
Aug 29, 2024
CVSS 9.8
EPSS 0.15
CVE-2024-6670 CRITICAL KEVNUCLEI
WhatsUp Gold SQL Injection (CVE-2024-6670)
Aug 29, 2024
CVSS 9.8
EPSS 0.95
CVE-2024-7745 MEDIUM
WS_FTP Server <8.8.8 - Privilege Escalation
Aug 28, 2024
CVSS 6.5
EPSS 0.00
CVE-2024-7744 MEDIUM
WS_FTP Server < 8.8.8 - Authenticated Path Traversal via Web Transfer Module
Aug 28, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-6576 HIGH
Progress MOVEit Transfer - Privilege Escalation
Jul 29, 2024
CVSS 7.3
EPSS 0.01
CVE-2024-6327 CRITICAL
Telerik Report Server <2024 Q2 - Code Injection
Jul 24, 2024
CVSS 9.9
EPSS 0.02
CVE-2024-6096 HIGH
Telerik Reporting <18.1.24.709 - Code Injection
Jul 24, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-5019 MEDIUM
WhatsUp Gold < 23.1.3 - Unauthenticated Arbitrary File Read via SessionController.CachedCSS
Jun 25, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-5018 MEDIUM
WhatsUp Gold < 23.1.3 - Unauthenticated Path Traversal via SessionController.LoadNMScript
Jun 25, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-5017 MEDIUM
WhatsUp Gold < 23.1.3 - Unauthenticated Path Traversal via AppProfileImport
Jun 25, 2024
CVSS 6.5
EPSS 0.02
CVE-2024-5016 HIGH
WhatsUp Gold < 23.1.0 - Remote Code Execution via Untrusted Data Deserialization
Jun 25, 2024
CVSS 7.2
EPSS 0.22