📦 Openedge

Name: Openedge
Author: Progress

by Progress

🔍 What is Openedge?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2023-40051

CRITICAL CVSS 9.1 Jan 18, 2024

This vulnerability allows attackers to upload arbitrary files to Progress Application Server (PAS) for OpenEdge via the WEB transport. Affected organizations using vulnerable versions of PASOE could h...

CVE-2024-7346

HIGH CVSS 7.2 Sep 3, 2024

This vulnerability allows attackers to bypass TLS host name validation when OpenEdge default certificates are used for network connections, enabling man-in-the-middle attacks. It affects OpenEdge inst...

CVE-2023-34203

HIGH CVSS 8.8 Jun 23, 2023

This vulnerability allows any authenticated user in Progress OpenEdge Management or OpenEdge Explorer to perform URL injection attacks to escalate privileges, potentially gaining administrative access...

CVE-2022-29849

HIGH CVSS 7.8 May 2, 2022

This vulnerability allows local attackers to escalate privileges on Progress OpenEdge systems by exploiting SUID binaries. Affected users are those running OpenEdge versions before 11.7.14 or 12.x bef...