GHSA-6r2v-725q-58ch

Опубликовано: 12 сент. 2024

Источник: github

Github: Не прошло ревью

CVSS3: 8.4

Описание

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects:

 Product

Affected Versions

LoadMaster

From 7.2.55.0 to 7.2.60.0 (inclusive)

From 7.2.49.0 to 7.2.54.11 (inclusive)

7.2.48.12 and all prior versions

Multi-Tenant Hypervisor

7.1.35.11 and all prior versions

ECS

All prior versions to 7.2.60.0 (inclusive)

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects:

 Product

Affected Versions

LoadMaster

From 7.2.55.0 to 7.2.60.0 (inclusive)

From 7.2.49.0 to 7.2.54.11 (inclusive)

7.2.48.12 and all prior versions

Multi-Tenant Hypervisor

7.1.35.11 and all prior versions

ECS

All prior versions to 7.2.60.0 (inclusive)

Ссылки

EPSS

Процентиль: 39%

0.00175

Низкий

8.4 High

CVSS3

CVE ID

CVE-2024-6658

Дефекты

CWE-20

Связанные уязвимости

CVE-2024-6658

CVSS3: 8.4

nvd

больше 1 года назад

Improper Input Validation vulnerability of Authenticated User in Progress LoadMaster allows OS Command Injection.This issue affects:  Product Affected Versions LoadMaster From 7.2.55.0 to 7.2.60.0 (inclusive)   From 7.2.49.0 to 7.2.54.11 (inclusive)   7.2.48.12 and all prior versions Multi-Tenant Hypervisor 7.1.35.11 and all prior versions ECS All prior versions to 7.2.60.0 (inclusive)

EPSS

Процентиль: 39%

0.00175

Низкий

8.4 High

CVSS3

CVE ID

CVE-2024-6658

Дефекты

CWE-20