2 matches found
The vulnerability of the software for managing OpenEdge Authentication Gateway lies in its ability to bypass authentication due to a fundamental error, allowing attackers to elevate their privileges.
The vulnerability of the software for managing OpenEdge Authentication Gateway lies in the ability to bypass authentication due to a fundamental error. Exploiting this vulnerability could allow an attacker, operating remotely, to increase their privileges...
CVE-2024-1403
CVE-2024-1403 affects Progress OpenEdge Authentication Gateway and AdminServer prior to 11.7.19, 12.2.14, and 12.8.1. The flaw is an authentication bypass caused by improper handling of credentials, where unexpected content can bypass authentication via the authorizeUser() flow that validates aga...