Description
Due to a command injection vulnerability in Kemp LoadMaster, au unauthenticated attacker can execute arbitrary OS commands with a specially crafted HTTP request.
Remediation
Upgrade to the latest version of Kemp LoadMaster
References
LoadMaster Security Vulnerability CVE-2024-1212
CVE-2024-1212: Unauthenticated Command Injection In Progress Kemp LoadMaster
Related Vulnerabilities
MoinMoin CVE-2012-6081 multiple arbitrary code execution vulnerabilities
Oracle Database Server CVE-2015-2595 Vulnerability (CVE-2015-2595)
Drupal Session Fixation Vulnerability (CVE-2008-3222)
Internet Information Services Other Vulnerability (CVE-2000-0884)
Moodle Exposure of Resource to Wrong Sphere Vulnerability (CVE-2023-5542)