Primary

Context

Progress Flowmon Command Injection Vulnerability in Troubleshooting Scripts

Vulnerability

Patched

A command injection vulnerability has been identified in Progress Flowmon versions prior to 12.5.5. This vulnerability allows users with administrator privileges and access to the management interface to execute unintended commands within scripts designed for troubleshooting.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the affected system.

Remediation

Users are advised to upgrade to Progress Flowmon version 12.5.5 or later. Upgrade packages are available through the Progress Community Portal. Note that upgrading will cause a temporary outage of the system.

Added: Oct 9, 2025, 1:20 PM

Updated: Oct 9, 2025, 4:04 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

10.0

exploitability

4.4

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

10.0

exploitability

4.4

remediation

7.7

relevance

0.7

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Progress Flowmon Command Injection Vulnerability in Troubleshooting Scripts

Vulnerability

Impact

Remediation

Affected Products

Progress Flowmon

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating