- Description
- Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary system command execution.
- Source
- security@progress.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- Progress Kemp LoadMaster OS Command Injection Vulnerability
- Exploit added on
- Nov 18, 2024
- Exploit action due
- Dec 9, 2024
- Required action
- Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
- Hype score
- Not currently trending
🔴 Kemp LoadMaster Unauthenticated Command Injection (#CVE-2024-1212) - Critical https://t.co/Yk49hxFiZB
@dailycve
7 Dec 2024
36 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 Progress Kemp LoadMaster Unauthenticated Command Injection (#CVE-2024-1212) - CRITICAL - Critical https://t.co/kAFaadBWZO
@dailycve
28 Nov 2024
18 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2024-1212
@transilienceai
21 Nov 2024
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
Latest Known Exploited Vulnerabilities (#KEV) : #CVE-2024-1212 #Progress Kemp LoadMaster OS Command Injection Vulnerability https://t.co/5fufJydYor
@ScyScan
20 Nov 2024
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#DOYOUKNOWCVE CISA Alert! CISA adds 3 new vulnerabilities to its Known Exploited Vulnerabilities Catalog CVE-2024-1212: An OS Command Injection flaw in Progress Kemp LoadMaster. Exploitable remotely, this allows attackers to execute arbitrary commands, compromising system… http
@Loginsoft_Inc
20 Nov 2024
41 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Security Alert: A critical OS command injection vulnerability (CVE-2024-1212) in Kemp LoadMaster is being actively exploited, enabling attackers to execute commands without authorization. Update to the latest patched version immediately to secure your systems.… https://t.co/
@OstorlabSec
20 Nov 2024
71 Impressions
1 Retweet
1 Like
0 Bookmarks
0 Replies
0 Quotes
🚨 Maximum-Severity CVSS 10 Alert - Critical VMware and Kemp LoadMaster Vulnerabilities Exploited 🟥 CVE-2024-1212 (10.0) Progress Kemp LoadMaster OS Command Injection Vulnerability 🟥 CVE-2024-38812 (9.8) VMware vCenter Server heap-overflow vulnerability The high-severity… htt
@cytexsmb
19 Nov 2024
585 Impressions
2 Retweets
5 Likes
4 Bookmarks
0 Replies
3 Quotes
CVE-2024-1212 is getting exploited #inthewild. Find out more at https://t.co/CJXwYDWUv3 CVE-2024-9463 is getting exploited #inthewild. Find out more at https://t.co/1tb5ZXWUiM
@inthewildio
19 Nov 2024
61 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
KEVにCVE-2024-1212 が掲載されたProgress社のKemp LoadMasterの公開台数をShodanで調査したところグローバルで602台を発見しました。Censysもほぼ同じ台数です。日系サーバは国内外ともに未発見です(国内分はデモ環境) https://t.co/YeHRJRjE3q
@nekono_naha
19 Nov 2024
1569 Impressions
1 Retweet
12 Likes
2 Bookmarks
0 Replies
1 Quote
CISA KEV Catalog Update Part IV- November 2024 #USCISA #CVE-2024-0012 #CVE-2024-1212 #CVE-2024-9474 https://t.co/dXjn5kH72t
@pravin_karthik
19 Nov 2024
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Major security flaws in Progress Kemp LoadMaster (CVE-2024-1212) and VMware vCenter Server (CVE-2024-38812 and CVE-2024-38813) are actively being exploited. Learn how to mitigate this flaw and secure your system before it’s too late – Read more: https://t.co/6dz5iY251w #infosec
@TheHackersNews
19 Nov 2024
37079 Impressions
31 Retweets
74 Likes
10 Bookmarks
1 Reply
3 Quotes
🚨 CISA Adds 3 New Vulnerabilities to KEV Catalog 🚨 CVE-2024-0012: PAN-OS Authentication Bypass CVE-2024-9474: PAN-OS Command Injection CVE-2024-1212: Kemp LoadMaster OS Command Injection More details ➡️ https://t.co/ALCbFIaroK #CyberSecurity #CISAUpdates
@decrypting_sec
19 Nov 2024
67 Impressions
0 Retweets
2 Likes
1 Bookmark
0 Replies
0 Quotes
CISA Adds Three Known Exploited Vulnerabilities to Catalog: CVE-2024-1212 - Progress Kemp LoadMaster CVE-2024-0012 - Palo Alto Networks PAN-OS CVE-2024-9474 - Palo Alto Networks PAN-OS https://t.co/Biz2eLeyrs https://t.co/FpucU4b5W3
@TMJIntel
19 Nov 2024
124 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
🛡️ We added #PaloAltoNetworks PAN-OS & #ProgressKemp LoadMaster vulnerabilities, CVE-2024-0012, CVE-2024-9474, & CVE-2024-1212 to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #In
@CISACyber
18 Nov 2024
7673 Impressions
35 Retweets
68 Likes
8 Bookmarks
4 Replies
5 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:progress:loadmaster:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1B68CCC-11F4-4ECF-9284-5D46ABA70846",
"versionEndExcluding": "7.2.48.10",
"versionStartIncluding": "7.2.48.1"
},
{
"criteria": "cpe:2.3:a:progress:loadmaster:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9D8FAFF9-0C1A-49D3-AB63-10DC49A46881",
"versionEndExcluding": "7.2.54.8",
"versionStartIncluding": "7.2.54.0"
},
{
"criteria": "cpe:2.3:a:progress:loadmaster:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E8F83C9-8D7C-4DC2-BA3D-AB92709D364F",
"versionEndExcluding": "7.2.59.2",
"versionStartIncluding": "7.2.55.0"
}
],
"operator": "OR"
}
]
}
]