Progress Software Corporation Loadmaster vulnerabilities
2 known vulnerabilities affecting progress_software_corporation/loadmaster.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2
Vulnerabilities
Page 1 of 1
CVE-2024-3544P3HIGHCVSS 7.5≥ LoadMaster 7.2.55.0 (GA), < 7.2.59.4≥ LoadMaster 7.2.49.0 (LTSF), < 7.2.54.10+1 more2024-05-02
CVE-2024-3544 [HIGH] CWE-798 CVE-2024-3544: Unauthenticated attackers can perform actions, using SSH private keys, by knowing the IP address an
Unauthenticated attackers can perform actions, using SSH private keys, by knowing the IP address and having access to the same network of one of the machines in the HA or Cluster group. This vulnerability has been closed by enhancing LoadMaster partner communications to require a shared secret that must be exchanged between the partners before communicat
nvd
CVE-2024-3543P3HIGHCVSS 7.5≥ LoadMaster 7.2.55.0 (GA), < 7.2.59.4≥ LoadMaster 7.2.49.0 (LTSF), < 7.2.54.10+1 more2024-05-02
CVE-2024-3543 [HIGH] CWE-257 CVE-2024-3543: Use of reversible password encryption algorithm allows attackers to decrypt passwords. Sensitive i
Use of reversible password encryption algorithm allows attackers to decrypt passwords. Sensitive information can be easily unencrypted by the attacker, stolen credentials can be used for arbitrary actions to corrupt the system.
nvd