Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2024-8755
Analyzed
More InfoOfficial Page
Source-security@progress.com
View Known Exploited Vulnerability (KEV) details
Published At-11 Oct, 2024 | 15:15
Updated At-30 Jul, 2025 | 15:39

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows : OS Command Injection.This issue affects:  Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.1 (inclusive)    From 7.2.49.0 to 7.2.54.12 (inclusive)    7.2.48.12 and all prior versions Multi-Tenant Hypervisor 7.1.35.12 and all prior versions ECS All prior versions to 7.2.60.1 (inclusive)

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Secondary3.18.4HIGH
CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Primary3.19.8CRITICAL
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Progress Software Corporation
progress
>>loadmaster>>Versions up to 7.2.48.12(inclusive)
cpe:2.3:o:progress:loadmaster:*:*:*:*:*:*:*:*
Progress Software Corporation
progress
>>loadmaster>>Versions from 7.2.49.0(inclusive) to 7.2.54.12(inclusive)
cpe:2.3:o:progress:loadmaster:*:*:*:*:*:*:*:*
Progress Software Corporation
progress
>>loadmaster>>Versions from 7.2.55.0(inclusive) to 7.2.61.0(exclusive)
cpe:2.3:o:progress:loadmaster:*:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-20Secondarysecurity@progress.com
CWE-78Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://support.kemptechnologies.com/hc/en-us/articles/30297374715661-LoadMaster-Security-Vulnerability-CVE-2024-8755security@progress.com
Product
Change History
0Changes found
Details not found