CVE-2026-3692

UNKNOWN 0.0

Unintended command execution during report generation in Progress Flowmon

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

In Progress Flowmon versions prior to 12.5.8, a vulnerability exists whereby an authenticated low-privileged user may craft a request during the report generation process that results in unintended commands being executed on the server.

CWE	CWE-78
Vendor	progress software
Product	flowmon
Published	Apr 2, 2026
Last Updated	Apr 3, 2026

Stay Ahead of the Next One

Get instant alerts for progress software flowmon

Be the first to know when new unknown vulnerabilities affecting progress software flowmon are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Progress Software / Flowmon

Flowmon 12 versions prior to 12.5.8

References

NVD ↗ CVE.org ↗ EPSS Data ↗

community.progress.com: https://community.progress.com/s/article/CVE-2026-3692-Progress-Flowmon