CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-7591: Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection
10.0
CVSS
Description
Improper Input Validation vulnerability in Progress LoadMaster allows OS Command Injection.This issue affects:
* LoadMaster: 7.2.40.0 and above
* ECS: All versions
* Multi-Tenancy: 7.1.35.4 and above
Classification
CVE ID: CVE-2024-7591
CVSS Base Severity: CRITICAL
CVSS Base Score: 10.0
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Affected Products
Vendor: Progress
Product: LoadMaster
Nuclei Template
http/cves/2024/CVE-2024-7591.yaml
Exploit Prediction Scoring System (EPSS)
EPSS Score: 7.65% (probability of being exploited)
EPSS Percentile: 91.29% (scored less or equal to compared to others)
EPSS Date: 2025-03-18 (when was this score calculated)
References
https://support.kemptechnologies.com/hc/en-us/articles/29196371689613-LoadMaster-Security-Vulnerability-CVE-2024-7591https://url.us.m.mimecastprotect.com/s/m_v3CkRgEgSz2vDGUQi8HGPtBQ?domain=insinuator.net