Vulnerability Details CVE-2024-7345
Local ABL Client bypass of the required PASOE security checks may allow an attacker to commit unauthorized code injection into Multi-Session Agents on supported OpenEdge LTS platforms up to OpenEdge LTS 11.7.18 and LTS 12.2.13 on all supported release platforms
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.2%
CVSS Severity
CVSS v3 Score 8.3
Products affected by CVE-2024-7345
-
cpe:2.3:a:progress:openedge:-
-
cpe:2.3:a:progress:openedge:10.1a
-
cpe:2.3:a:progress:openedge:10.1b
-
cpe:2.3:a:progress:openedge:10.2a
-
cpe:2.3:a:progress:openedge:10.2b
-
cpe:2.3:a:progress:openedge:10.2b07
-
cpe:2.3:a:progress:openedge:10.2b08
-
cpe:2.3:a:progress:openedge:11.0
-
cpe:2.3:a:progress:openedge:11.1
-
cpe:2.3:a:progress:openedge:11.3
-
cpe:2.3:a:progress:openedge:11.4
-
cpe:2.3:a:progress:openedge:11.5
-
cpe:2.3:a:progress:openedge:11.7
-
cpe:2.3:a:progress:openedge:11.7.16
-
cpe:2.3:a:progress:openedge:11.7.18
-
cpe:2.3:a:progress:openedge:12.0
-
cpe:2.3:a:progress:openedge:12.1
-
cpe:2.3:a:progress:openedge:12.2
-
cpe:2.3:a:progress:openedge:12.2.10
-
cpe:2.3:a:progress:openedge:12.2.11
-
cpe:2.3:a:progress:openedge:12.2.12
-
cpe:2.3:a:progress:openedge:12.2.13
-
cpe:2.3:a:progress:openedge:12.2.3
-
cpe:2.3:a:progress:openedge:12.2.4
-
cpe:2.3:a:progress:openedge:12.2.5
-
cpe:2.3:a:progress:openedge:12.2.6
-
cpe:2.3:a:progress:openedge:12.2.7
-
cpe:2.3:a:progress:openedge:12.2.8
-
cpe:2.3:a:progress:openedge:12.2.9
-
cpe:2.3:a:progress:openedge:9.1e