CNNVD-202601-2280 Information

Jan 13, 2026 cve

CNNVD ID

CNNVD-202601-2280

CVE-2025-13444

CNNVD Published: 2026-01-13

Description (Chinese)

Progress LoadMaster是美国Progress公司的一款高性能的应用程序交付控制器（ADC）和负载均衡器。 Progress LoadMaster存在安全漏洞，该漏洞源于API输入参数未清理，可能导致具有用户管理权限的认证攻击者执行任意命令。

Description (English)

Progress LoadMaster is a high-performance application delivery controller (ADC) and load balancer for Progress. Progress LoadMaster had a security loophole, which stemmed from the fact that the API input parameters had not been cleared and could lead to the execution of arbitrary orders by a certified assailant with user management privileges.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

Progress

Published

2026-01-13

Last Modified

2026-02-24

References

https://community.progress.com/s/article/Connection-Manager-for-ObjectScale-Vulnerabilities-CVE-2025-13444-CVE-2025-13447 https://community.progress.com/s/article/ECS-Connection-Manager-Vulnerabilities-CVE-2025-13444-CVE-2025-13447 https://community.progress.com/s/article/LoadMaster-Vulnerabilities-CVE-2025-13444-CVE-2025-13447 https://community.progress.com/s/article/MOVEit-WAF-Vulnerabilities-CVE-2025-13444-CVE-2025-13447

Patch

https://community.progress.com/s/article/MOVEit-WAF-Vulnerabilities-CVE-2025-13444-CVE-2025-13447

Share on: