Security Advisory

OpenEdge Product Security Update Advisory (CVE-2024-1403)

Mar 04 2024

Overview

An update has been made available to address a vulnerability in OpenEdge products. users of affected versions are advised to update to the latest version.

Affected Products

OpenEdge prior to 11.7.18
Versions aboveOpenEdge from 11.7.19 to 12.2.13(exclude)
OpenEdge 12.8.0

Resolved Vulnerabilities

Authentication bypass vulnerability in OpenEdge Authentication Gateway and AdminServer (CVE-2024-1403)

Vulnerability Patches

Vulnerability Patches were made available in the February 27, 2024 update. Please follow the instructions in the Referenced Sites to update to the latest Vulnerability Patches version.

OpenEdge LTS versions 11.7.19, 12.2.14, and 12.8.1

Referenced Sites

[1] CVE-2024-1403 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-1403
[2] Important Security Update for OpenEdge Authentication Gateway and AdminServer
https://community.progress.com/s/article/Important-Critical-Alert-for-OpenEdge-Authentication-Gateway-and-AdminServer

Previous Post

Google Chrome browser (122.0.6261.94) security update advisory

Next Post

Mozilla Products March 2024 1st Security Update Advisory