cbcvebase.
CVE-2024-6658
published 2024-09-12

CVE-2024-6658: Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects: Product Affected Versions…

PriorityP433medium6.8CVSS 3.1
AVAACLPRHUINSUCHIHAH
EPSS
0.55%
42.0th percentile
Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects: Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.0 (inclusive) From 7.2.49.0 to 7.2.54.11 (inclusive) 7.2.48.12 and all prior versions Multi-Tenant Hypervisor 7.1.35.11 and all prior versions ECS All prior versions to 7.2.60.0 (inclusive)

Affected

5 ranges
VendorProductVersion rangeFixed in
progressloadmaster<= 7.2.48.12
progressloadmaster>= 7.2.49.0 < 7.2.54.127.2.54.12
progressloadmaster>= 7.2.55.0 < 7.2.60.17.2.60.1
progressloadmaster>= All Previous Versions < 7.2.60.17.2.60.1
progressmulti-tenant_loadmaster< 7.1.35.127.1.35.12
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.