CVE-2026-4048 | Progress LoadMaster prior 7.2.63.0 UI command injection

Inserito da Angelo Barbosa | Apr 20, 2026 | CVE

A vulnerability has been found in Progress LoadMaster, ECS Connections Manager, Object Scale Connection Manager and MOVEit WAF and classified as critical. This affects an unknown part of the component UI. Performing a manipulation results in command injection.

This vulnerability is known as CVE-2026-4048. Access to the local network is required for this attack. No exploit is available.

The affected component should be upgraded.

CVE-2026-4048 | Progress LoadMaster prior 7.2.63.0 UI command injection

Post correlati

CVE-2025-61955 | F5 F5OS-A/F5OS-C eval injection (K000156771)

CVE-2024-7452 | itsourcecode Placement Management System 1.0 view_company.php id sql injection

CVE-2023-49406 | Tenda W30E 16.01.0.12 /goform/telnet Privilege Escalation

CVE-2024-39173 | calculator-boilerplate 1.0 /routes/calculator.js eval input injection