Primary

Context

Progress LoadMaster Improper Input Validation Vulnerability Leading to Buffer Overflow

Vulnerability

Patched

A buffer overflow vulnerability has been identified in Progress LoadMaster, stemming from improper input validation. This issue affects LoadMaster versions 7.2.40.0 and above, as well as all versions of ECS and LoadMaster Multi-Tenancy versions 7.1.35.4 and above. The vulnerability allows remote attackers to send carefully crafted HTTP requests that can cause a stack-based buffer overflow, potentially leading to the execution of arbitrary system commands.

Impact

Exploitation of this vulnerability allows for a stack-based buffer overflow, which could be used to execute arbitrary system commands.

Remediation

This vulnerability has been addressed by improving buffer management to prevent the execution of malicious code from the stack. Users should upgrade to the latest version of LoadMaster.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

7.5

exploitability

8.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

5.2

impact

7.5

exploitability

8.3

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

10.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Progress LoadMaster Improper Input Validation Vulnerability Leading to Buffer Overflow

Vulnerability

Impact

Remediation

Affected Products

Progress LoadMaster

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating