Warning: VMware vCenter and Kemp LoadMaster Flaws Under Active Exploitation

Now-patched security flaws impacting Progress Kemp LoadMaster and VMware vCenter Server have come under active exploitation in the wild, it has emerged.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added CVE-2024-1212 (CVSS score: 10.0), a maximum-severity security vulnerability in Progress Kemp LoadMaster to its Known Exploited Vulnerabilities (KEV) catalog. It was addressed by Progress Software back in February 2024.

“Progress Kemp LoadMaster contains an OS command injection vulnerability that allows an unauthenticated, remote attacker to access the system through the LoadMaster management interface, enabling arbitrary system command execution,” the agency said.

Rhino Security Labs, which discovered and reported the flaw, said successful exploitation enables command execution on LoadMaster should an attacker have access to the administrator web user interface, granting them full access to the load balancer.

CISA’s addition of CVE-2024-1212 coincides with a warning from Broadcom that attackers are now exploiting two security flaws in the VMware vCenter Server, which were demonstrated at the Matrix Cup cybersecurity competition held in China earlier this year.

The flaws, CVE-2024-38812 (CVSS score: 9.8) and CVE-2024-38813 (CVSS score: 7.5), were originally resolved in September 2024, although the company rolled out fixes for the former a second-time last month, stating the previous patches “did not fully address” the problem.

CVE-2024-38812 – A heap-overflow vulnerability in the implementation of the DCERPC protocol that could permit a malicious actor with network access to obtain remote code execution

CVE-2024-38813 – A privilege escalation vulnerability that could permit a malicious actor with network access to escalate privileges to root

While there are currently no details on the observed exploitation of these vulnerabilities in real-world attacks, CISA is recommending that Federal Civilian Executive Branch (FCEB) agencies remediate CVE-2024-1212 by December 9, 2024, to secure their networks.

The development comes days after Sophos revealed that cybercrime actors are actively weaponizing a critical flaw in Veeam Backup & Replication (CVE-2024-40711, CVSS score: 9.8) to deploy a previously undocumented ransomware called Frag.

Ravie Lakshmanan

Leave a Comment Cancel Reply

London, GB

6:10 pm, May 17, 2025

19°C

L: 18° | H: 21°

Feels like 19°C° clear sky

Humidity: 50 %

Pressure: 1021 mb

Wind: 4 mph NE

Wind Gust: 4 mph

UV Index: 0

Precipitation: 0 mm

Clouds: 0%

Rain Chance: 0%

Visibility: 10 km

Sunrise: 5:05 am

Sunset: 8:48 pm

DailyHourly

Daily ForecastHourly Forecast

Today 10:00 pm

18° | 21°°C 0 mm 0% 9 mph 56 % 1021 mb 0 mm/h

Tomorrow 10:00 pm

9° | 16°°C 0 mm 0% 9 mph 83 % 1022 mb 0 mm/h

Mon May 19 10:00 pm

11° | 19°°C 0.2 mm 20% 13 mph 78 % 1022 mb 0 mm/h

Tue May 20 10:00 pm

9° | 21°°C 0.35 mm 35% 9 mph 81 % 1022 mb 0 mm/h

Wed May 21 10:00 pm

11° | 20°°C 0.09 mm 9% 11 mph 79 % 1020 mb 0 mm/h

Today 7:00 pm

18° | 19°°C 0 mm 0% 9 mph 50 % 1021 mb 0 mm/h

Today 10:00 pm

14° | 18°°C 0 mm 0% 7 mph 56 % 1021 mb 0 mm/h

Tomorrow 1:00 am

12° | 14°°C 0 mm 0% 5 mph 68 % 1022 mb 0 mm/h

Tomorrow 4:00 am

11° | 11°°C 0 mm 0% 6 mph 83 % 1021 mb 0 mm/h

Tomorrow 7:00 am

9° | 9°°C 0 mm 0% 8 mph 82 % 1021 mb 0 mm/h

Tomorrow 10:00 am

11° | 11°°C 0 mm 0% 6 mph 69 % 1022 mb 0 mm/h

Tomorrow 1:00 pm

15° | 15°°C 0 mm 0% 7 mph 52 % 1021 mb 0 mm/h

Tomorrow 4:00 pm

16° | 16°°C 0 mm 0% 9 mph 49 % 1020 mb 0 mm/h

Name	Price	24H (%)
Bitcoin(BTC)	€92,160.31	-1.21%
Ethereum(ETH)	€2,204.10	-4.78%
Tether(USDT)	€0.90	0.00%
XRP(XRP)	€2.07	-4.11%
Solana(SOL)	€148.08	-3.40%
USDC(USDC)	€0.90	0.00%
Dogecoin(DOGE)	€0.190603	-6.69%
Shiba Inu(SHIB)	€0.000013	-6.05%
Pepe(PEPE)	€0.000011	-9.67%
Peanut the Squirrel(PNUT)	€0.270112	-11.07%

Warning: VMware vCenter and Kemp LoadMaster Flaws Under Active Exploitation

Share:

Leave a Comment Cancel Reply

Utility link

Useful link

Newsletter

Follow Us