Progress Software issued an emergency fix to deal with a vulnerability impacting its its LoadMaster and LoadMaster Multi-Tenant (MT) Hypervisor products. This issue, called CVE-2024-7591, is considered a maximum severity vulnerability. The vulnerability is an improper input validation issue, which could allow unauthenticated, remote attackers to gain access to LoadMaster’s management interface. 

Security leaders weigh in 

Jason Soroko, Senior Fellow at Sectigo:

“The CVE-2024-7591 vulnerability in Progress Software’s LoadMaster products is highly critical due to its 10/10 CVSS score, enabling unauthenticated remote attackers to execute arbitrary commands. Given Progress Software’s recent issues after the MOVEit breach, this vulnerability potentially exposes the brand to security concerns. LoadMaster is widely used for load balancing in enterprises, making this flaw a high-priority risk. Security teams should immediately apply the emergency fix, isolate vulnerable systems from untrusted networks, and restrict access to the management interface to trusted IPs only. The recommendation is that swift action is essential to avoid exploitation.”

Stephen Kowski, Field CTO SlashNext Email Security+:

“This vulnerability in Progress Software’s LoadMaster is critical due to its maximum CVSS score of 10 and the potential for unauthenticated remote code execution. LoadMaster is widely used for load balancing and application delivery in enterprise environments, making it an attractive target for attackers seeking to compromise networks. Security teams should immediately patch affected systems and implement advanced threat detection capabilities to identify and block sophisticated attacks that may exploit this or similar vulnerabilities.

“The popularity of LoadMaster in enterprise environments, combined with Progress Software’s recent high-profile security issues, makes this vulnerability particularly concerning. Organizations should not only patch but also conduct thorough security audits, implement robust access controls, and deploy AI-powered detection systems capable of identifying anomalous behavior that could indicate exploitation attempts. It’s crucial to stay ahead of evolving threats by continuously monitoring for new attack vectors and updating security measures accordingly.

“Security teams should prioritize patching this vulnerability immediately, but also recognize that patching alone is insufficient in today’s threat environment. Implementing a multi-layered security approach that includes real-time threat intelligence, advanced email security to prevent phishing attacks that could lead to credential compromise, and continuous monitoring for suspicious activities is essential. Additionally, teams should review and enhance their incident response plans to ensure rapid detection and mitigation of any potential breaches related to this or similar vulnerabilities.”