Geek Feed

CISA tags Progress Kemp LoadMaster flaw as exploited in attacks

November 20, 2024November 20, 2024 geekfeed0Tagged Actively Exploited, CISA, Command Injection, KEV, LoadMaster, Progress Software, vulnerability

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three new flaws in its Known Exploited Vulnerabilities (KEV) catalog, including a critical OS command injection impacting Progress Kemp LoadMaster. The flaw, discovered by Rhino Security Labs and tracked as CVE-2024-1212, was addressed via an update released on February 21, 2024. However, this is the first […]

2 mins read

Progress LoadMaster vulnerable to 10/10 severity RCE flaw

September 9, 2024September 9, 2024 geekfeed0Tagged CVE-2024-7591, LoadMaster, Progress Software, rce, Remote Command Execution, vulnerability

Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device. The flaw, tracked as CVE-2024-7591, is categorized as an improper input validation problem allowing an unauthenticated, remote attacker to access LoadMaster’s management interface using […]

2 mins read