CVE-2024-56132

Summary

CVE-2024-56132 is an authenticated OS Command Injection vulnerability affecting Progress LoadMaster from versions 7.2.48.12 and prior, as well as versions 7.2.55.0 to 7.2.60.1 (inclusive) for both LoadMaster and ECS. This vulnerability arises due to improper input validation, enabling attackers to inject and execute operating system commands. The potential impact includes unauthorized access, data theft, or system compromise. Users are strongly encouraged to update to the latest supported versions as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.