CVE-2026-2514
Possibility of unintended actions when viewing maliciously crafted network data in Progress Flowmon ADS web application
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
In Progress Flowmon ADS versions prior to 12.5.5 and 13.0.3, a vulnerability exists whereby an adversary with access to Flowmon monitoring ports may craft malicious network data that, when processed by Flowmon ADS and viewed by an authenticated user, could result in unintended actions being executed in the user's browser context.
| CWE | CWE-79 |
| Vendor | progress software |
| Product | flowmon ads |
| Published | Mar 12, 2026 |
| Last Updated | Mar 13, 2026 |
Stay Ahead of the Next One
Get instant alerts for progress software flowmon ads
Be the first to know when new unknown vulnerabilities affecting progress software flowmon ads are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Progress Software / Flowmon ADS
Flowmon ADS 12 versions prior to 12.5.5 Flowmon ADS 13 versions prior to 13.0.3