Important Security Updates
We are pleased to introduce you to version 7.5.2 of Allegra, which includes security improvements and enhancements for better usability.
This update is part of our commitment to continuously offer you a secure and efficient product.
You can download the latest Allegra version 7.5.2 here.
The Allegra version 7.5.2 includes fixes to strengthen security for the following issues:
| ZDI CAN | Product Affected | CVSS Score + Vector | Description |
| ZDI-CAN-23451 | Allegra Versions lower 7.5.2 | 7.2 - High: CVSS:AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | Remote Code Execution that can be exploited by users with administrator system role. |
| ZDI-CAN-23452 | Allegra Versions lower 7.5.2 | 7.2 - High: CVSS:AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | Remote Code Execution that can be exploited by users with administrator system role. |
| ZDI-CAN-23453 | Allegra Versions lower 7.5.2 | 7.2 - High: CVSS:AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H | Remote Code Execution that can be exploited by users with administrator system role. |
| ZDI-CAN-23609 | Allegra Versions lower 7.5.2 | 8.8 CVSS: AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H | Remote Code Execution Vulnerability by authenticated users |
Christoph Friedrich
CEO Alltena GmbH
Christoph Friedrich is a computer scientist and certified Project Management Professional. He has extensive experience in the introduction and integration of project management tools as well as the analysis and definition of processes in project and service management.