CNNVD-202510-1331 Information

CNNVD ID

CNNVD-202510-1331

Related CVE

CVE-2025-10239

• CNNVD Published: 2025-10-09

Description (Chinese)

Progress Flowmon是Progress公司的一个实时网络流量监控工具。 Progress Flowmon 12.5.5之前版本存在操作系统命令注入漏洞，该漏洞源于管理员用户可在管理界面中执行额外的非预期命令，可能导致命令执行。

Description (English)

Progress Flowmon is a real-time network traffic monitoring tool for Progress. Progress Flowmon 12.5.5 had a gap in the operating system commands, which stemmed from the fact that the administrator user could execute additional unexpected orders in the management interface, which could lead to enforcement.

Hazard Level

Medium

Vulnerability Type

操作系统命令注入

Affected Vendor

Progress

Published

2025-10-09

Last Modified

2026-02-24

References

https://community.progress.com/s/article/CVE-2025-10239 https://access.redhat.com/security/cve/cve-2025-10239

Patch

https://community.progress.com/s/