CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-56134

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection. This issue affects:  Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.1 (inclusive)   From 7.2.49.0 to 7.2.54.12 (inclusive)   7.2.48.12 and all prior versions Multi-Tenant Hypervisor 7.1.35.12 and all prior versions ECS All prior versions to 7.2.60.1 (inclusive)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.5%

CVSS Severity

CVSS v3 Score 8.4

References

https://community.progress.com/s/article/LoadMaster-Security-Vulnerability-CVE-2024-56131-CVE-2024-56132-CVE-2024-56133-CVE-2024-56134-CVE-2024-56135

Products affected by CVE-2024-56134

Progress » Multi-Tenant Loadmaster » Version: 7.1.35.12

cpe:2.3:a:progress:multi-tenant_loadmaster:7.1.35.12
Progress » Multi-Tenant Loadmaster » Version: 7.1.35.4

cpe:2.3:a:progress:multi-tenant_loadmaster:7.1.35.4
Progress » Loadmaster » Version: 7.2.40.0

cpe:2.3:o:progress:loadmaster:7.2.40.0
Progress » Loadmaster » Version: 7.2.48.12

cpe:2.3:o:progress:loadmaster:7.2.48.12
Progress » Loadmaster » Version: 7.2.49.0

cpe:2.3:o:progress:loadmaster:7.2.49.0
Progress » Loadmaster » Version: 7.2.54.12

cpe:2.3:o:progress:loadmaster:7.2.54.12
Progress » Loadmaster » Version: 7.2.55.0

cpe:2.3:o:progress:loadmaster:7.2.55.0
Progress » Loadmaster » Version: 7.2.60.1

cpe:2.3:o:progress:loadmaster:7.2.60.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-56134

Products

Pricing

Contact Us