Unrated severityNVD Advisory· Published Apr 2, 2024· Updated Dec 16, 2025
Flowmon Unauthenticated Command Injection Vulnerability
CVE-2024-2389
Description
In Flowmon versions prior to 11.1.14 and 12.3.5, an operating system command injection vulnerability has been identified. An unauthenticated user can gain entry to the system via the Flowmon management interface, allowing for the execution of arbitrary system commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <11.1.14, <12.3.5
- Progress Software/Flowmonv5Range: 11.X
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.