PT-2026-29738 · Flowmon · Flowmon
Published
2026-04-02
·
Updated
2026-04-02
·
CVE-2026-3692
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Flowmon versions prior to 12.5.8
Description
An authenticated low-privileged user can create a request during report generation that leads to the execution of unintended commands on the server.
Recommendations
Update Flowmon to version 12.5.8 or later.
Fix
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Flowmon