CVE-2026-9272

In Progress Flowmon ADS versions prior to 12.5.6 and 13.0.5, a vulnerability exists whereby an adversary who is authenticated as a low-privileged user in the Anomaly Detection System (ADS) may send specially crafted requests that could result in unauthorized access to application data and its modification.
CVSS

No CVSS.

Configurations

No configuration.

History

02 Jul 2026, 15:17

Type Values Removed Values Added
New CVE

Information

Published : 2026-07-02 15:17

Updated : 2026-07-03 04:17


NVD link : CVE-2026-9272

Mitre link : CVE-2026-9272

CVE.ORG link : CVE-2026-9272


JSON object : View

Products Affected

No product.

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')