Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-6658

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects:  Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.0 (inclusive)   From 7.2.49.0 to 7.2.54.11 (inclusive)   7.2.48.12 and all prior versions Multi-Tenant Hypervisor 7.1.35.11 and all prior versions ECS All prior versions to 7.2.60.0 (inclusive)

Published

2024-09-12T15:18:26.543

Last Modified

2025-07-30T16:24:22.697

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 8.4 (HIGH)

Weaknesses

Type: Secondary
CWE-20
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	progress	multi-tenant_loadmaster	< 7.1.35.12	Yes
Operating System	progress	loadmaster	≤ 7.2.48.12	Yes
Operating System	progress	loadmaster	< 7.2.54.12	Yes
Operating System	progress	loadmaster	< 7.2.60.1	Yes

References

https://support.kemptechnologies.com/hc/en-us/articles/28910587250701 Vendor Advisory ([email protected])