Published: 08/01/2020 Updated: 13/01/2020

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

A Bash script injection vulnerability exists in Kemp Load Master 7.1-16 and previous versions due to a failure to sanitize input in the Web User Interface (WUI).

Vulnerable Product	Search on Vulmon	Subscribe to Product
kemptechnologies loadmaster

# Exploit Title: Kemp Load Master - Multiple Vulnerabilities (RCE, CSRF, XSS, DoS) # Date: 01 April 2015 # Author: Roberto Suggi Liverani # Software Link: kemptechnologiescom/load-balancer/ # Version: 7116 and previous versions # Tested on: Kemp Load Master 71-16 # CVE : CVE-2014-5287/5288 Link: blogmalerischnet/2015/04/playing ...

Kemp Load Master version 71-16 suffers from code execution, cross site request forgery, cross site scripting, and denial of service vulnerabilities ...

CWE-74 https://www.fxc.jp/news/Product_Overview-LoadMaster_Release_Notes.pdf http://packetstormsecurity.com/files/131284/Kemp-Load-Master-7.1-16-CSRF-XSS-DoS-Code-Execution.html https://www.exploit-db.com/exploits/36609/https://nvd.nist.gov https://www.exploit-db.com/exploits/36609/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-5287

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect