{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-7389", "assignerOrgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "state": "PUBLISHED", "assignerShortName": "ProgressSoftware", "dateReserved": "2025-07-09T13:01:22.716Z", "datePublished": "2026-04-14T13:12:54.559Z", "dateUpdated": "2026-04-14T14:04:52.165Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "shortName": "ProgressSoftware", "dateUpdated": "2026-04-14T13:12:54.559Z"}, "title": "Unauthorized Arbitrary File Read via RMI in AdminServer Interface", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-552", "description": "CWE-552", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-497", "descriptions": [{"lang": "en", "value": "CAPEC-497"}]}], "affected": [{"vendor": "Progress Software Corporation", "product": "OpenEdge", "platforms": ["Windows", "Linux", "64 bit", "32 bit"], "modules": ["OpenEdge AdminServer"], "versions": [{"status": "affected", "version": "OpenEdge 12.2.0", "lessThanOrEqual": "12.2.9", "versionType": "custom"}, {"status": "affected", "version": "OpenEdge 12.8.0", "lessThanOrEqual": "12.2.18", "versionType": "custom"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the AdminServer component of OpenEdge on all supported platforms grants its authenticated users\u00a0OS-level access to the server\nthrough the adopted authority of the AdminServer process itself.\u00a0 The delegated authority of the AdminServer could allow its users the ability to read arbitrary files on the host system through the misuse of the setFile() and openFile()\n methods exposed through the RMI interface.\u00a0 Misuse was limited only by OS-level authority of the AdminServer's elevated \nprivileges granted and the user's access to these methods enabled through RMI.\u00a0 The exploitable methods have been removed thus eliminating their access through RMI or downstream of the RMI registry.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "A vulnerability in the <code>AdminServer</code> component of OpenEdge on all supported platforms grants its authenticated users&nbsp;OS-level access to the server\nthrough the adopted authority of the AdminServer process itself.&nbsp; The delegated authority of the AdminServer could allow its users the ability to read arbitrary files on the host system through the misuse of the <code>setFile()</code> and <code>openFile()</code>\n methods exposed through the RMI interface.&nbsp; Misuse was limited only by OS-level authority of the AdminServer's elevated \nprivileges granted and the user's access to these methods enabled through RMI.&nbsp; The exploitable methods have been removed thus eliminating their access through RMI or downstream of the RMI registry."}]}], "references": [{"url": "https://community.progress.com/s/article/Important-Arbitrary-File-Ready-Security-Update-for-OpenEdge-AdminServer"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "userInteraction": "NONE", "vulnConfidentialityImpact": "HIGH", "subConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "subIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "version": "4.0", "baseSeverity": "HIGH", "baseScore": 8.2, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N"}}], "credits": [{"lang": "en", "value": "Thomas Riedmaier, Siemens Energy", "type": "finder"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-7389", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-14T14:01:57.322738Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T14:04:52.165Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-7389", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-14T14:01:57.322738Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-14T14:04:00.698Z"}}], "cna": {"title": "Unauthorized Arbitrary File Read via RMI in AdminServer Interface", "source": {"discovery": "UNKNOWN"}, "credits": [{"lang": "en", "type": "finder", "value": "Thomas Riedmaier, Siemens Energy"}], "impacts": [{"capecId": "CAPEC-497", "descriptions": [{"lang": "en", "value": "CAPEC-497"}]}], "metrics": [{"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.2, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Progress Software Corporation", "modules": ["OpenEdge AdminServer"], "product": "OpenEdge", "versions": [{"status": "affected", "version": "OpenEdge 12.2.0", "versionType": "custom", "lessThanOrEqual": "12.2.9"}, {"status": "affected", "version": "OpenEdge 12.8.0", "versionType": "custom", "lessThanOrEqual": "12.2.18"}], "platforms": ["Windows", "Linux", "64 bit", "32 bit"], "defaultStatus": "affected"}], "references": [{"url": "https://community.progress.com/s/article/Important-Arbitrary-File-Ready-Security-Update-for-OpenEdge-AdminServer"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A vulnerability in the AdminServer component of OpenEdge on all supported platforms grants its authenticated users\u00a0OS-level access to the server\nthrough the adopted authority of the AdminServer process itself.\u00a0 The delegated authority of the AdminServer could allow its users the ability to read arbitrary files on the host system through the misuse of the setFile() and openFile()\n methods exposed through the RMI interface.\u00a0 Misuse was limited only by OS-level authority of the AdminServer's elevated \nprivileges granted and the user's access to these methods enabled through RMI.\u00a0 The exploitable methods have been removed thus eliminating their access through RMI or downstream of the RMI registry.", "supportingMedia": [{"type": "text/html", "value": "A vulnerability in the <code>AdminServer</code> component of OpenEdge on all supported platforms grants its authenticated users&nbsp;OS-level access to the server\nthrough the adopted authority of the AdminServer process itself.&nbsp; The delegated authority of the AdminServer could allow its users the ability to read arbitrary files on the host system through the misuse of the <code>setFile()</code> and <code>openFile()</code>\n methods exposed through the RMI interface.&nbsp; Misuse was limited only by OS-level authority of the AdminServer's elevated \nprivileges granted and the user's access to these methods enabled through RMI.&nbsp; The exploitable methods have been removed thus eliminating their access through RMI or downstream of the RMI registry.", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-552", "description": "CWE-552"}]}], "providerMetadata": {"orgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "shortName": "ProgressSoftware", "dateUpdated": "2026-04-14T13:12:54.559Z"}}}, "cveMetadata": {"cveId": "CVE-2025-7389", "state": "PUBLISHED", "dateUpdated": "2026-04-14T14:04:52.165Z", "dateReserved": "2025-07-09T13:01:22.716Z", "assignerOrgId": "f9fea0b6-671e-4eea-8fde-31911902ae05", "datePublished": "2026-04-14T13:12:54.559Z", "assignerShortName": "ProgressSoftware"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the AdminServer component of OpenEdge on all supported platforms grants its authenticated users\u00a0OS-level access to the server\nthrough the adopted authority of the AdminServer process itself.\u00a0 The delegated authority of the AdminServer could allow its users the ability to read arbitrary files on the host system through the misuse of the setFile() and openFile()\n methods exposed through the RMI interface.\u00a0 Misuse was limited only by OS-level authority of the AdminServer's elevated \nprivileges granted and the user's access to these methods enabled through RMI.\u00a0 The exploitable methods have been removed thus eliminating their access through RMI or downstream of the RMI registry."}], "id": "CVE-2025-7389", "lastModified": "2026-04-17T15:24:57.753", "metrics": {"cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security@progress.com", "type": "Secondary"}]}, "published": "2026-04-14T14:16:10.263", "references": [{"source": "security@progress.com", "url": "https://community.progress.com/s/article/Important-Arbitrary-File-Ready-Security-Update-for-OpenEdge-AdminServer"}], "sourceIdentifier": "security@progress.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-552"}], "source": "security@progress.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": ["windows", "linux", "64_bit", "32_bit"], "status": "affected", "versions": {"scheme": "semver", "value": "[12.2.0,12.2.9]"}}, {"platform": ["windows", "linux", "64_bit", "32_bit"], "status": "affected", "versions": {"scheme": "semver", "value": "[12.8.0,12.2.18]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "OpenEdge", "source": "cna", "vendor": "Progress Software Corporation"}, "product": "openedge", "vendor": "progress_software_corporation"}], "analysis": {"en": {"generated_at": "2026-04-14T14:35:48.600592+00:00", "value": {"mitigation_remediation": ["Upgrade to the latest OpenEdge release where the setFile and openFile methods have been removed from the AdminServer RMI interface.", "If an upgrade is not immediately possible, limit the RMI interface to trusted network segments and enforce strict authentication policies.", "Verify that the vulnerable methods are no longer exposed by testing the AdminServer RMI registry after applying the patch or configuration changes."], "summary": {"action": "Immediate Patch", "impact": "Arbitrary file read with OS\u2011level privilege escalation"}, "threat_synthesis": {"affected_systems": "The vulnerability affects Progress Software Corporation\u2019s OpenEdge platform on all supported operating systems. All versions of OpenEdge that include the AdminServer component in the RMI interface are susceptible until the methods are removed.", "description_and_impact": "A recon of the AdminServer exposes two RMI methods\u2014setFile() and openFile()\u2014that were incorrectly implemented, allowing authenticated users to request the server to read any file on the underlying operating system. The privilege misassertion grants users full OS\u2011level read access, potentially exposing sensitive configuration files, credentials, or other data. This flaw matches the CWE\u2011552 pattern of unauthorized file access.", "risk_and_exploitability": "The CVSS base score of 8.2 indicates a high severity level. No EPSS value is available, and the issue is not listed in the CISA KEV catalog. Exploitation requires authenticated network access to the AdminServer\u2019s RMI services. Therefore, attackers who can obtain valid credentials or compromise an existing authenticated session can trigger the unauthorized file read, making the risk significant for any exposed RMI endpoint."}}}}, "created": "2026-04-14T16:15:33.803243+00:00", "updated": "2026-04-14T16:30:30.949326+00:00", "vendors": ["progress_software_corporation", "progress_software_corporation$PRODUCT$openedge"]}