CVE-2025-1758: Critical Buffer Overflow in Kemp LoadMaster Opens Door to Remote Code Execution

A high-severity vulnerability has been identified in Progress Software’s Kemp LoadMaster, a popular application delivery controller (ADC) and load balancer trusted by enterprises to ensure the performance and security of critical web applications.

Tracked as CVE-2025-1758, this stack-based buffer overflow flaw has a CVSS score of 9.8, signifying a critical risk. The issue exists in the mangle executable, a component of LoadMaster responsible for handling data input operations.

“The issue results from the lack of proper validation of the length of user-supplied data prior to copying it to a fixed-length stack-based buffer.”

This oversight enables unauthenticated remote attackers to execute arbitrary code on vulnerable systems. Exploitation occurs in the context of the bal user, potentially allowing attackers to tamper with configurations, exfiltrate sensitive data, or disrupt operations.

Kemp LoadMaster is a high-performance ADC that delivers SSL offloading, content switching, URL rewriting, and compression for enterprise apps. It plays a pivotal role in improving uptime, accelerating content delivery, and managing application traffic with high availability.

This vulnerability affects multiple LoadMaster versions prior to 7.2.61.1, which contain the vulnerable mangle component. The flaw requires no authentication to exploit, making it an especially attractive target for opportunistic attackers and APT groups.

“Authentication is not required to exploit this vulnerability.”

The vulnerability was responsibly disclosed by Nicholas Zubrisky (@NZubrisky) of Trend Micro Security Research.

Progress Software has released LoadMaster 7.2.61.1, which patches this vulnerability. Organizations are strongly urged to apply the latest update immediately.

Rate this post

Leave a Reply Cancel reply

Website

Related Posts:

Leave a Reply Cancel reply