CVE-2024-1212

This repository contains a functional Python exploit for CVE-2024-1212, an unauthenticated command injection vulnerability in Kemp LoadMaster. The exploit includes both scanning and interactive shell capabilities, leveraging a crafted HTTP request to execute arbitrary commands.

This repository contains a detailed technical writeup on exploiting CVE-2024-1212, an RCE vulnerability in Kemp LoadMaster. It includes reconnaissance steps, exploitation process, and mitigation strategies, but lacks actual exploit code.

The repository contains a functional Python exploit for CVE-2024-1212, an unauthenticated command injection vulnerability in Progress Kemp LoadMaster. The exploit sends a crafted HTTP request to the `/access/set` endpoint to execute arbitrary commands.

This Metasploit module exploits an unauthenticated command injection vulnerability in Progress Kemp LoadMaster by injecting payloads into the authorization header. It supports automatic and manual targeting modes, with payload execution controlled via a flag file to avoid duplicate sessions.

This Metasploit module exploits a sudo privilege escalation vulnerability in Progress Kemp LoadMaster by overwriting a writable binary (/bin/loadkeys) with a malicious payload, allowing local privilege escalation to root.