Описание
Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms
Ссылки
- MitigationVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 11.7.18 (включая)Версия от 12.0 (включая) до 12.2.13 (включая)
Одно из
cpe:2.3:a:progress:openedge:*:*:*:*:*:*:*:*
cpe:2.3:a:progress:openedge:*:*:*:*:*:*:*:*
EPSS
Процентиль: 18%
0.00057
Низкий
8.3 High
CVSS3
9.6 Critical
CVSS3
Дефекты
CWE-94
CWE-94
Связанные уязвимости
CVSS3: 8.3
github
больше 1 года назад
Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms
EPSS
Процентиль: 18%
0.00057
Низкий
8.3 High
CVSS3
9.6 Critical
CVSS3
Дефекты
CWE-94
CWE-94