2 matches found
CVE-2026-9272
CVE-2026-9272 affects Progress Flowmon ADS prior to 12.5.6 and 13.0.5. An adversary authenticated as a low-privileged ADS user can send specially crafted requests that lead to unauthorized access to and modification of application data. The CVE’s metrics indicate HIGH impact on confidentiality, i...
CVE-2025-13774
Progress Flowmon ADS contains an SQL injection vulnerability in versions prior to 12.5.4 and prior to 13.0.1, exploitable by authenticated users to execute unintended SQL queries and commands. Multiple sources (NVD, Red Hat, CVE records, CNNVD, and other feeds) corroborate the issue and specify t...