漏洞描述
Progress Flowmon是Progress公司的一个实时网络流量监控工具。Progress Flowmon中存在命令注入漏洞,此漏洞是由于程序未充分验证用户输入file参数的数据所导致的。
Progress Flowmon CVE-2024-2389 命令注入漏洞
PoC代码
暂无相关漏洞推荐
- Progress Chef Automate /api/v0/compliance/profiles/search SQL 注入漏洞(CVE-2025-8868)
- Progress Telerik Report Server /Startup/Register 未授权访问漏洞(CVE-2024-4358)
- POC CVE-2024-1212: Progress Kemp LoadMaster - Command Injection
- POC CVE-2024-2389: Progress Kemp Flowmon - Command Injection
- POC CVE-2024-4358: Progress Telerik Report Server - Authentication Bypass
- POC CVE-2024-4885: Progress Software WhatsUp Gold GetFileWithoutZip Directory Traversal - Remote Code Execution
- POC CVE-2024-2389: Progress Flowmon rce
- Progress Software Flowmon /service.pdfs/confluence 代码执行漏洞(CVE-2024-2389)
- Progress Telerik Report Server 数据类型转换错误 可致远程代码执行
- Progress LoadMaster 输入验证不当漏洞 可致命令执行
- Progress MOVEit Transfer 身份验证绕过漏洞
- Progress Kemp LoadMaster /access/set 远程命令执行漏洞(CVE-2024-1212)
- Progress Kemp LoadMaster CVE-2024-2448 命令注入漏洞