Patrick C Miller’s Post

Progress LoadMaster vulnerable to 10/10 severity RCE flaw https://lnkd.in/eaGR69xj

Progress LoadMaster vulnerable to 10/10 severity RCE flaw https://lnkd.in/gNCt3E-E

Progress (formerly KEMP) LoadMaster vulnerable to 10/10 severity RCE flaw - this allows full admin access and it doesn’t appear to be difficult to exploit. #patchnow https://lnkd.in/eiH8seBd

Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device. CVE-2024-7591, is categorized as an improper input validation problem allowing an unauthenticated, remote attacker to access LoadMaster’s management interface using a specially crafted HTTP request.

Progress Software has issued an emergency fix for CVE-2024-7591, a 10 out of 10 CVSS severity score vulnerability, impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device through improper input validation. Progress has released an add-on package that can be installed on any of the vulnerable versions, with the exception of the free version, so there’s no minimum version to upgrade to in order to mitigate the risk. #Progress #LoadMaster #LoadMasterMultiTenant https://lnkd.in/eGR9JByY

Tenable disabled Nessus scanner agent versions 10.8.0 and 10.8.1 due to a faulty plugin update causing agents to go offline. The company released Nessus Agent v10.8.2 to address the issue and recommended upgrading or downgrading affected agents.

The latest update for #CalComSoftware includes "User Account Control Settings Hardening Guide

Bad Tenable plugin updates take down Tenable Nessus Vulnerability Scanner agents worldwide

Progress Software has issued an emergency fix for a maximum (10/10) severity vulnerability impacting its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products that allows attackers to remotely execute commands on the device.  https://lnkd.in/dz39EjQ4

Progress Software has released security updates for a maximum-severity flaw in LoadMaster and Multi-Tenant (MT) #hypervisor that could result in the execution of arbitrary operating system commands #CVE-2024-7591 #vulnmgmt