Medium severity6.7NVD Advisory· Published Oct 30, 2025· Updated Apr 15, 2026
CVE-2025-11906
CVE-2025-11906
Description
A vulnerability exists in Progress Flowmon versions prior 12.5.6 where certain system configuration files have incorrect file permissions, allowing a user with access to the default flowmon system user account used for SSH access to potentially escalate privileges to root during service initialization.
Affected products
1- Range: <12.5.6
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.