Flowmon Ads
Approved changes feed: RSS · Atom
cpe:2.3:a:progress_software:flowmon_ads:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Progress Software (96c4320b-2c72-5331-bd5a-d39d72393793) |
|---|---|
| Product | Flowmon Ads (0b2bc07a-5d78-570f-b7ab-6d1674d165fa) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2026-2514 |
vulnerable | 2026-06-03 15:19:24.407171 |
Possibility of unintended actions when viewing maliciously crafted network data in Progress Flowmon ADS web application
In Progress Flowmon ADS versions prior to 12.5.5 and 13.0.3, a vulnerability exists whereby an adversary with access to Flowmon monitoring ports may craft malicious network data that, when processed by Flowmon ADS and viewed by an authenticated user, could result in unintended actions being executed in the user's browser context.
Published: 2026-03-12T13:00:27.353Z
Updated: 2026-03-13T03:55:43.039Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2026-2513 |
vulnerable | 2026-06-03 15:19:24.406725 |
Possibility of unintended actions when an administrator clicks a malicious link in the Progress Flowmon ADS web application
A vulnerability exists in Progress Flowmon ADS versions prior to 12.5.5 and 13.0.3, whereby an administrator who clicks a malicious link provided by an attacker may inadvertently trigger unintended actions within their authenticated web session.
Published: 2026-03-12T12:58:59.894Z
Updated: 2026-03-13T03:55:42.297Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13774 |
vulnerable | 2026-06-03 14:58:53.623282 |
SQL injection leading to privilege escalation in Progress Flowmon ADS
HIGH (8.8)
A vulnerability exists in Progress Flowmon ADS versions prior to 12.5.4 and 13.0.1 where an SQL injection vulnerability allows authenticated users to execute unintended SQL queries and commands.
Published: 2026-01-13T12:59:51.775Z
Updated: 2026-02-26T15:04:47.323Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.