CVE-2024-7591

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This issue affects: * LoadMaster: 7.2.40.0 and above * ECS: All versions * Multi-Tenancy: 7.1.35.4 and above
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:kemptechnologies:loadmaster:*:*:*:*:*:*:*:*
cpe:2.3:o:kemptechnologies:multi-tenant_hypervisor_firmware:*:*:*:*:*:*:*:*

History

16 Oct 2024, 15:15

Type Values Removed Values Added
CWE CWE-20

19 Sep 2024, 18:19

Type Values Removed Values Added
CPE cpe:2.3:o:kemptechnologies:multi-tenant_hypervisor_firmware:*:*:*:*:*:*:*:*
cpe:2.3:a:kemptechnologies:loadmaster:*:*:*:*:*:*:*:*
CWE CWE-78
CVSS v2 : unknown
v3 : 10.0
v2 : unknown
v3 : 7.2
References () https://support.kemptechnologies.com/hc/en-us/articles/29196371689613-LoadMaster-Security-Vulnerability-CVE-2024-7591 - () https://support.kemptechnologies.com/hc/en-us/articles/29196371689613-LoadMaster-Security-Vulnerability-CVE-2024-7591 - Patch, Vendor Advisory
First Time Kemptechnologies
Kemptechnologies multi-tenant Hypervisor Firmware
Kemptechnologies loadmaster

06 Sep 2024, 12:08

Type Values Removed Values Added
Summary
  • (es) La vulnerabilidad de validación de entrada incorrecta en Progress LoadMaster permite la inyección de comandos del sistema operativo. Este problema afecta a: * LoadMaster: 7.2.40.0 y superiores * ECS: todas las versiones * Multi-Tenancy: 7.1.35.4 y superiores

05 Sep 2024, 18:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-05 18:15

Updated : 2024-10-16 15:15


NVD link : CVE-2024-7591

Mitre link : CVE-2024-7591

CVE.ORG link : CVE-2024-7591


JSON object : View

Products Affected

kemptechnologies

  • multi-tenant_hypervisor_firmware
  • loadmaster
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')