Main Vulnerability Database Exploits ID:10875 - Exploit for Improper authentication in LoadMaster - CVE-2024-1212

ID:10875 - Exploit for Improper authentication in LoadMaster - CVE-2024-1212

Published: November 19, 2024

Vulnerability identifier: #VU100597

Vulnerability risk: Critical

CVE-ID: CVE-2024-1212

CWE-ID: CWE-287

Exploitation vector: Remote access

Vulnerable software:
LoadMaster

Link to public exploit:

https://www.rapid7.com/db/modules/exploit/linux/http/progress_kemp_loadmaster_unauth_cmd_injection

Vulnerability description

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to a missing authentication in the LoadMaster management interface. A remote non-authenticated attacker can use the interface to execute arbitrary commands and compromise the system.

Remediation

Install updates from vendor's website.

ID:10875 - Exploit for Improper authentication in LoadMaster - CVE-2024-1212

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human