The Progress Software has address In your Loadmaster software, which can be used by several high -speed security disadvantages, which can be used by malicious actors to perform arbitrary system teams or download any file from the system.
KEMP LOADMASTER-TIME HIGHPHOOL DELIVERY APPLOPER (ADC) and Balance load that provides accessibility, scale, performance and safety for important business applications and websites.
Revealed vulnerabilities below –
- Cve-2024-56131. Cve-2024-56132. Cve-2024-56133and Cve-2024-56135 (CVSS results: 8.4) – A set of incorrect input checks that allows for deleted malicious subjects to access the Loadmaster Management Interface and successfully check authentication to perform arbitrary system teams with a thoroughly developed HTTP request
- Cve-2024-56134 (CVSS Assessment: 8.4) – Incorrect Visual Input Verification, which allows distant malicious subjects to access the Loadmaster Management Interface and successfully check authentication to download any file in the system through a carefully designed HTTP request HTTP
Subsequent software versions affect the shortcomings –
- Loadmaster versions from 7.2.55.0 to 7.2.60.1 (inclusive) – recorded in 7.2.61.0 (GA)
- Loadmaster versions from 7.2.49.0 to 7.2.54.12 (inclusive) – recorded at 7.2.54.13 (LTSF)
- Loader version 7.2.48.12 and previous – update to LTSF or GA
- Multiplayer loader, version 7.1.35.12 and previous – recorded at 7.1.35.13 (GA)
Progress software noted that it has no evidence that any of the aforementioned vulnerabilities are in the wild. In view of this, with previously disclosed flaws weapon By threatening actors in the past, it is important that customers apply the latest patches to optimal protection.
