skip to content
Decrypt LOL

Get Cyber-Smart in Just 5 Minutes a Week

Decrypt delivers quick and insightful updates on cybersecurity. No spam, no data sharing—just the info you need to stay secure.

Read the latest edition

CISA Identifies Vulnerability in Progress Kemp LoadMaster

/ 1 min read

CISA flags critical vulnerability in Progress Kemp LoadMaster as actively exploited. The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added a critical OS command injection vulnerability, tracked as CVE-2024-1212, to its Known Exploited Vulnerabilities catalog, marking it as under active exploitation. This flaw allows unauthenticated remote attackers to execute arbitrary commands via the LoadMaster management interface, affecting specific versions of the software. CISA has mandated that federal organizations apply the necessary updates or cease using the product by December 9, 2024. Additionally, two other vulnerabilities related to Palo Alto Networks’ PAN-OS Management Interface were also added to the catalog. System administrators are advised to upgrade to secure versions that address these critical flaws to mitigate potential risks.