9 matches found
Progress多款产品 代码注入漏洞
Progress Hybrid Data Pipeline and others are products of Progress, Inc.Progress Hybrid Data Pipeline is a data pipeline software.Progress Hybrid Data Pipeline Server is a data pipeline server. Progress DataDirect Connect for JDBC is a set of high-performance JDBC drivers. A code injection...
EUVD-2025-22997
Malicious code in bioql PyPI...
CVE-2025-6505
Unauthorized access and impersonation can occur in versions 4.6.2.3226 and below of Progress Software's Hybrid Data Pipeline Server on Linux. This vulnerability allows attackers to combine credentials from different sources, potentially leading to client impersonation and unauthorized access. Whe...
CVE-2025-6505
Unauthorized access and impersonation can occur in versions 4.6.2.3226 and below of Progress Software's Hybrid Data Pipeline Server on Linux. This vulnerability allows attackers to combine credentials from different sources, potentially leading to client impersonation and unauthorized access. Whe...
CVE-2025-6505
Unauthorized access and impersonation can occur in versions 4.6.2.3226 and below of Progress Software's Hybrid Data Pipeline Server on Linux. This vulnerability allows attackers to combine credentials from different sources, potentially leading to client impersonation and unauthorized access. Whe...
CVE-2025-6505
Summary of CVE-2025-6505 : Progress Software’s Hybrid Data Pipeline Server (Linux) versions ≤ 4.6.2.3226 are affected. The root issue is that during an OAuth handshake the server accepts client credentials from both HTTP headers and request parameters, enabling attackers to combine credentials fr...
CVE-2025-6505
Unauthorized access and impersonation can occur in versions 4.6.2.3226 and below of Progress Software's Hybrid Data Pipeline Server on Linux. This vulnerability allows attackers to combine credentials from different sources, potentially leading to client impersonation and unauthorized access. Whe...
PT-2025-31201 · Progress · Hybrid Data Pipeline Server
Name of the Vulnerable Software and Affected Versions: Progress Software Hybrid Data Pipeline Server versions 4.6.2.3226 and below Description: The Hybrid Data Pipeline Server is susceptible to unauthorized access and impersonation. Attackers can combine credentials from multiple sources,...
Progress Hybrid Data Pipeline Server 安全漏洞
Progress Hybrid Data Pipeline Server is a data pipeline server from Progress USA. A security vulnerability exists in Progress Hybrid Data Pipeline Server version 4.6.2.3226 and prior versions that stems from accepting client credentials from a different source, which could lead to unauthorized...