CVE-2024-56134

Summary

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection.

This issue affects:

 Product

Affected Versions

LoadMaster

From 7.2.55.0 to 7.2.60.1 (inclusive)

  

From 7.2.49.0 to 7.2.54.12 (inclusive)

  

7.2.48.12 and all prior versions

Multi-Tenant Hypervisor

7.1.35.12 and all prior versions

ECS

All prior versions to 7.2.60.1 (inclusive)

Affected Software

VendorProductVersion RangeStatus
ProgressLoadMasterAll Previous Versions < 7.2.61.0affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References