Remote Attackers Can Execute Arbitrary System Commands via LoadMaster Management Interface

CVE-2024-1212

9.8CRITICAL

Key Information

Vendor: Progress Software
Status: Loadmaster
Vendor: CVE Published:; 21 February 2024

Badges

🔥 No. 1 Trending😄 Trended👾 Exploit Exists🔴 Public PoC🟣 EPSS 94%📰 News Worthy

Summary

The CVE-2024-1212 vulnerability affects Progress Kemp LoadMaster and ECS Connection Manager products, allowing unauthenticated remote attackers to execute arbitrary system commands by accessing the management interface and issuing a crafted API command. This vulnerability has a CVSS score of 10, making it critical. As of now, there have been no reports of active exploitation of this vulnerability. However, organizations using these products are urged to review their networks for the presence of the vulnerable products, refer to Progress Kemp’s advisory on CVE-2024-1212 for mitigation strategies, and apply necessary security patches to address the vulnerability.

CISA Reported

CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2024-1212 as being exploited but is not known by the CISA to be used in ransomware campaigns. This is subject to change at pace

The CISA's recommendation is: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Affected Version(s)

LoadMaster <= 7.2.48.1

LoadMaster < 7.2.48.10

LoadMaster < 7.2.54.8

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2024-1212
Created by Chocapikk

News Articles

GBHackers News

CVE-2024-1212

CISA Warns Kemp LoadMaster OS Command Injection Vulnerability Exploited in Attacks

CISA issued an urgent security advisory warning organizations about an active exploitation of a vulnerability in Progress Kemp LoadMaster.

2 weeks ago

SecurityWeek

CVE-2024-1212

CISA Warns of Progress Kemp LoadMaster Vulnerability Exploitation

CISA is warning organizations that CVE-2024-1212, a Kemp LoadMaster OS command injection vulnerability, is being exploited in attacks.

2 weeks ago

BleepingComputer

CVE-2024-1212CVE-2024-7591

CISA tags Progress Kemp LoadMaster flaw as exploited in attacks

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added three new flaws in its Known Exploited Vulnerabilities (KEV) catalog, including a critical OS command injection impacting Progress Kemp LoadMaster.

2 weeks ago

EPSS Score

94% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit exists.
Nov 20, 2024
🔥
Vulnerability reached the number 1 worldwide trending spot.
Mar 22, 2024
Vulnerability started trending.
Mar 20, 2024
First article discovered by ctrl.co
Feb 22, 2024
Vulnerability published.
Feb 21, 2024
Vulnerability Reserved.
Feb 2, 2024

Collectors

NVD DatabaseMitre DatabaseCISA Database1 Proof of Concept(s)8 News Article(s)

Credit

Rhino Security Labs