CVE-2024-7345 | Progress OpenEdge up to 11.7.19/12.2.14 Multi-Session Agent code injection

Posted by Angelo Barbosa | Sep 3, 2024 | CVE

A vulnerability classified as critical was found in Progress OpenEdge up to 11.7.19/12.2.14. This vulnerability affects unknown code of the component Multi-Session Agent Handler. The manipulation leads to code injection.

This vulnerability was named CVE-2024-7345. Access to the local network is required for this attack. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-7345 | Progress OpenEdge up to 11.7.19/12.2.14 Multi-Session Agent code injection

Related Posts

CVE-2024-28155 | Jenkins AppSpider Plugin up to 1.0.16 HTTP Endpoint permission

CVE-2023-4479 | M-Files Web prior 23.8.12892.6 HTML Document cross site scripting

CVE-2023-50263 | Nautobot up to 1.6.6/2.0.5 /files/get/ name information disclosure (GHSA-75mc-3pjc-727q)

CVE-2024-41040 | Linux Kernel up to 5.10.221/5.15.162/6.1.99/6.6.40/6.9.9 tcf_ct_flow_table_process_conn use after free