CVE-2024-7346 | Progress OpenEdge up to 11.7.19/12.2.14 TLS certificate validation

Inserito da Angelo Barbosa | Set 3, 2024 | CVE

A vulnerability classified as problematic has been found in Progress OpenEdge up to 11.7.19/12.2.14. This affects an unknown part of the component TLS Handler. The manipulation leads to certificate with host mismatch.

This vulnerability is uniquely identified as CVE-2024-7346. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-7346 | Progress OpenEdge up to 11.7.19/12.2.14 TLS certificate validation

Post correlati

CVE-2024-25136 | AutomationDirect C-MORE EA9 HMI up to 6.77 path traversal (icsa-24-086-01)

CVE-2024-8213 | D-Link DNS-1550-04 up to 20240814 /cgi-bin/hd_config.cgi cgi_FMT_R12R5_1st_DiskMGR f_source_dev command injection (SAP10383)

CVE-2024-25676 | ViewerJS 0.5.8 URL TAG redirect

CVE-2024-45744 | TopQuadrant TopBraid EDG 7.1.3 storing passwords in a recoverable format