漏洞描述
Progress Kemp LoadMaster是一款功能强大、安全可靠的应用交付控制器。Progress Kemp LoadMaster存在命令注入漏洞,该漏洞是由于add_vs|add_rs接口对用户的请求验证不当导致的。
Progress Kemp LoadMaster CVE-2024-2448 命令注入漏洞
PoC代码
暂无相关漏洞推荐
- Progress Chef Automate /api/v0/compliance/profiles/search SQL 注入漏洞(CVE-2025-8868)
- Progress Telerik Report Server /Startup/Register 未授权访问漏洞(CVE-2024-4358)
- POC CVE-2024-1212: Progress Kemp LoadMaster - Command Injection
- POC CVE-2024-2389: Progress Kemp Flowmon - Command Injection
- POC CVE-2024-4358: Progress Telerik Report Server - Authentication Bypass
- POC CVE-2024-4885: Progress Software WhatsUp Gold GetFileWithoutZip Directory Traversal - Remote Code Execution
- POC CVE-2024-7591: Kemp LoadMaster Load Balancer - Unauthenticated Command Injection
- POC CVE-2024-2389: Progress Flowmon rce
- Progress Software Flowmon /service.pdfs/confluence 代码执行漏洞(CVE-2024-2389)
- Progress Telerik Report Server 数据类型转换错误 可致远程代码执行
- Progress LoadMaster 输入验证不当漏洞 可致命令执行
- Progress MOVEit Transfer 身份验证绕过漏洞
- Progress Kemp LoadMaster /access/set 远程命令执行漏洞(CVE-2024-1212)