CVE-2024-7345 Information

Description

Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms

Reference

https://community.progress.com/s/article/Direct-local-client-connections-to-MS-Agents-can-bypass-authentication