A critical vulnerability has been discovered in Progress Kemp LoadMaster software, a load balancer used in enterprise networks. The flaw allows attackers to execute commands with administrator privileges without requiring authentication. This exposes organizations to data theft and outages of web services or applications. The urgency to apply patches is paramount to avoid digital security compromises.
Technical details of the remote execution vulnerability 🛡️
The flaw, identified as CVE-2024-7591, resides in the LoadMaster management endpoint. It allows a remote attacker to send malicious HTTP requests to execute system commands without credentials. The attack vector exploits poor validation in session handling. Affected equipment includes versions prior to 7.2.48.1 and 7.2.54.2. The solution involves updating the software or applying restrictive firewall rules to mitigate the risk.
The admin forgets the password and the attacker celebrates ☕
It seems Kemp LoadMaster decided to save cybercriminals some work. Why steal credentials when the software already leaves the door open? Now attackers can sit down, have a coffee, and execute commands as if they were administrators. Meanwhile, IT teams scramble to find the patch like someone looking for a charger in a dark room. Good thing security is sometimes so generous.