CVE-2018-9091

CVE-2018-9091 affects Kemp LoadMaster LMOS versions 6.0.44–7.2.41.2 and LMOS LTS prior to 7.1.35.5. The root cause is a session-management flaw that enables an unauthenticated, remote attacker to bypass protections, gain system privileges, and run elevated commands (e.g., ls, ps, cat), potentiall...

CVE-2018-9091

A critical vulnerability in the KEMP LoadMaster Operating System LMOS 6.0.44 through 7.2.41.2 and Long Term Support LTS LMOS before 7.1.35.5 related to Session Management could allow an unauthenticated, remote attacker to bypass security protections, gain system privileges, and execute elevated...

KEMP LoadMaster 7.135.0.13245 - Persistent Cross-Site Scripting / Remote Code Execution Vulnerabilit

Exploit for multiple platform in category web applications Vulnerability Summary KEMP’s main product, the LoadMaster, is a load balancer built on its own proprietary software platform called LMOS, that enables it to run on almost any platform: As a KEMP LoadMaster appliance, a Virtual LoadMaster...

KEMP LoadMaster 7.135.0.13245 XSS / Code Execution

Vulnerability Summary KEMPas main product, the LoadMaster, is a load balancer built on its own proprietary software platform called LMOS, that enables it to run on almost any platform: As a KEMP LoadMaster appliance, a Virtual LoadMaster VLM deployed on HyperAV, VMWare, on bare metal or in the...

KEMP LoadMaster 7.135.0.13245 - Persistent Cross-Site Scripting Remote Code Execution

KEMP LoadMaster 7.135.0.13245 - Persistent Cross-Site Scripting Remote Code Execution Vulnerability Summary KEMP’s main product, the LoadMaster, is a load balancer built on its own proprietary software platform called LMOS, that enables it to run on almost any platform: As a KEMP LoadMaster...

KEMP LoadMaster 7.135.0.13245 - Persistent Cross-Site Scripting / Remote Code Execution

Vulnerability Summary KEMP’s main product, the LoadMaster, is a load balancer built on its own proprietary software platform called LMOS, that enables it to run on almost any platform: As a KEMP LoadMaster appliance, a Virtual LoadMaster VLM deployed on Hyper­V, VMWare, on bare metal or in the...

Kemp Virtual LoadMaster /progs/geoctrl/doadd fqdn stored cross-site scripting vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster /progs/geoctrl/doadd handles the fqdn parameter cross-site scripting vulnerability, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to gain access to...

Kemp Virtual LoadMaster seterrmsg() Arbitrary Code Execution Vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. A security vulnerability in the seterrmsg function of the Kemp Virtual LoadMaster /usr/wui/progs/fwaccess script allows an attacker to submit a special request to execute arbitrary code...

Kemp Virtual LoadMaster /progs/fwaccess/add/0 comment stored cross-site scripting vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster /progs/fwaccess/add/0 handles the comment parameter cross-site scripting vulnerability, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to gain access to...

Multiple Cross-Site Request Forgery Vulnerabilities in Kemp Virtual LoadMaster

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster suffers from multiple cross-site request forgery vulnerabilities that allow remote attackers to construct malicious URIs, trick users into parsing them, and perform malicious actions in the context of the target user...

Kemp Virtual LoadMaster /progs/doconfig/setmotd Stored Cross-Site Scripting Vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. A cross-site scripting vulnerability exists in Kemp Virtual LoadMaster /progs/doconfig/setmotd, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to gain access to sensitive...

Multiple Reflected Cross-Site Scripting Vulnerabilities in Kemp Virtual LoadMaster

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster suffers from multiple cross-site scripting vulnerabilities that can be exploited by remote attackers to construct malicious URIs and trick users into parsing them, which can be used to obtain sensitive cookies, hijack...