ГлавнаяУязвимости → CVE-2024-7591
10критическая

CVE-2024-7591

→ есть в БДУ: BDU:2025-01308 (на русском)
Описание (на английском; русское — в БДУ выше)

Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This issue affects: * LoadMaster: 7.2.40.0 and above * ECS: All versions * Multi-Tenancy: 7.1.35.4 and above

Затрагиваемое ПО
Kemptechnologies LoadmasterKemptechnologies Multi-tenant hypervisor firmware
CVSS
Балл10 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Источники
https://insinuator.net/2024/11/vulnerability-disclosure-command-injection-in-kemp-loadmaster-load-balancer-cve-2024-7591https://support.kemptechnologies.com/hc/en-us/articles/29196371689613-LoadMaster-Security-Vulnerability-CVE-2024-7591