CNNVD-202507-3610 Information

CNNVD ID

CNNVD-202507-3610

Related CVE

CVE-2025-6505

• CNNVD Published: 2025-07-29

Description (Chinese)

Progress Hybrid Data Pipeline Server是美国Progress公司的一个数据管道服务器。 Progress Hybrid Data Pipeline Server 4.6.2.3226及之前版本存在安全漏洞，该漏洞源于接受来自不同来源的客户端凭据，可能导致未授权访问和客户端冒充。

Description (English)

Progress Hybrid Data Pipeline Server is a data conduit server for Progress. Progress Hybrid Data Pipeline Server 4.6.2.32226 and previous versions had a security loophole, which stemmed from the acceptance of client documents from different sources, which could lead to unauthorized access and client impersonation.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Progress

Published

2025-07-29

Last Modified

2026-02-24

References

https://community.progress.com/s/article/DataDirect-Hybrid-Data-Pipeline-Critical-Security-Product-Alert-Bulletin-July-2025—CVE-2025-6505

Patch

https://community.progress.com/s/article/DataDirect-Hybrid-Data-Pipeline-Critical-Security-Product-Alert-Bulletin-July-2025---CVE-2025-6505