Primary

Context

Progress Flowmon Privilege Escalation Vulnerability

Vulnerability

Patched

In Progress Flowmon versions prior to 12.5.6, a vulnerability allows users with access to the default Flowmon system account via SSH to potentially escalate privileges to root. This issue arises because certain system configuration files have incorrect file permissions, which can be exploited during service initialization.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing a user to gain root access on the system.

Remediation

Users are advised to upgrade to Progress Flowmon version 12.5.6 or later. Upgrade packages are available through the Progress Community Portal. Note that upgrading will cause a system outage.

Added: Oct 30, 2025, 8:17 AM

Updated: Oct 30, 2025, 3:53 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

3.5

remediation

7.7

relevance

0.8

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Progress Flowmon Privilege Escalation Vulnerability

Vulnerability

Impact

Remediation

Affected Products

Progress Flowmon

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating