CVE-2015-9245
First published: Tue Oct 31 2017(Updated: )
Insecure default configuration in Progress Software OpenEdge 10.2x and 11.x allows unauthenticated remote attackers to specify arbitrary URLs from which to load and execute malicious Java classes via port 20931.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Progress OpenEdge | =10.2a | |
| Progress OpenEdge | =10.2b | |
| Progress OpenEdge | =10.2b07 | |
| Progress OpenEdge | =10.2b08 | |
| Progress OpenEdge | =11.0 | |
| Progress OpenEdge | =11.1 | |
| Progress OpenEdge | =11.2 | |
| Progress OpenEdge | =11.3 | |
| Progress OpenEdge | =11.4 | |
| Progress OpenEdge | =11.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/severity
- agent/type
- agent/tags
- agent/event
- agent/weakness
- agent/author
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/progress
- canonical/progress openedge
- version/progress openedge/10.2a
- version/progress openedge/10.2b
- version/progress openedge/10.2b07
- version/progress openedge/10.2b08
- version/progress openedge/11.0
- version/progress openedge/11.1
- version/progress openedge/11.2
- version/progress openedge/11.3
- version/progress openedge/11.4
- version/progress openedge/11.5