CVE-2024-3543
- EPSS 0.13%
- Veröffentlicht 02.05.2024 14:15:10
- Zuletzt bearbeitet 10.02.2025 15:16:45
Use of reversible password encryption algorithm allows attackers to decrypt passwords. Sensitive information can be easily unencrypted by the attacker, stolen credentials can be used for arbitrary actions to corrupt the system.
CVE-2024-2449
- EPSS 6.4%
- Veröffentlicht 22.03.2024 14:15:09
- Zuletzt bearbeitet 10.02.2025 19:33:51
A cross-site request forgery vulnerability has been identified in LoadMaster. It is possible for a malicious actor, who has prior knowledge of the IP or hostname of a specific LoadMaster, to direct an authenticated LoadMaster administrator to a thir...
CVE-2024-2448
- EPSS 22.71%
- Veröffentlicht 22.03.2024 14:15:08
- Zuletzt bearbeitet 11.02.2025 17:39:30
An OS command injection vulnerability has been identified in LoadMaster. An authenticated UI user with any permission settings may be able to inject commands into a UI component using a shell command resulting in OS command injection.
CVE-2024-1212
- EPSS 94.31%
- Veröffentlicht 21.02.2024 18:15:50
- Zuletzt bearbeitet 31.10.2025 21:56:48
Unauthenticated remote attackers can access the system through the LoadMaster management interface, enabling arbitrary system command execution.