Vulnerabilities > CVE-2022-29849 - Unspecified vulnerability in Progress Openedge 11.7/12.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
In Progress OpenEdge before 11.7.14 and 12.x before 12.2.9, certain SUID binaries within the OpenEdge application were susceptible to privilege escalation. If exploited, a local attacker could elevate their privileges and compromise the affected system.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
References
- https://www.progress.com/openedge
- https://community.progress.com/s/article/OpenEdge-11-7-14-is-Now-Available
- https://community.progress.com/s/article/OpenEdge-12-2-9-Update-is-available
- https://community.progress.com/s/article/Remediation-of-Privilege-Escalation-Security-Vulnerability-CVE-2022-29849