GCVE - cpe:2.3:a:progress:loadmaster:*:*:*:*:ml:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:progress:loadmaster:*:*:*:*:ml:*:*:*

part: a version: * update: *

Vendor	Progress (`f9d80521-f73f-5a85-8df9-9306f2f67809`)
Product	Loadmaster (`461d78a5-017f-532b-8e4c-b055948a7b66`)
Edition	*
Language	*
Software edition	ml
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-2449`	vulnerable	2026-06-03 14:55:29.274245	LoadMaster Cross-Site Request Forgery (CSRF) HIGH (7.5) A cross-site request forgery vulnerability has been identified in LoadMaster. It is possible for a malicious actor, who has prior knowledge of the IP or hostname of a specific LoadMaster, to direct an authenticated LoadMaster administrator to a third-party site. In such a scenario, the CSRF payload hosted on the malicious site would execute HTTP transactions on behalf of the LoadMaster administrator. Published: 2024-03-22T13:35:39.103Z Updated: 2024-08-12T19:23:36.632Z Open on db.gcve.eu Reference links https://progress.com/loadmaster https://support.kemptechnologies.com/hc/en-us/articles/25119767150477-LoadMaster-Security-Vulnerabilities-CVE-2024-2448-and-CVE-2024-2449	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.