Ongoing Critical Vulnerability in Flowmon provides remote access to systems​


This week, Progress Software announced patches for a severe vulnerability in Flowmon that might allow remote, unauthenticated attackers to gain access to systems.

Flowmon, a popular network monitoring and security system, contains analytics, reporting, and monitoring tools that enable administrators to visualize network data and respond to cyber threats.

The newly resolved flaw, tracked as CVE-2024-2389 and given the highest severity rating (CVSS score of 10/10), is defined as an OS command injection issue that allows unauthorized access to the system via the platform’s web interface.

Given the severity of CVE-2024-2389, customers should update their Flowmon appliances as soon as feasible.

Read More : Critical Vulnerability in Progress Flowmon Allows Remote Access to Systems

For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.