ShellCodeX Intelligence Brief
CRITICAL
Vulnerabilities
Progress Kemp LoadMaster pre-auth command injection under active exploit
Source headline: Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts
Threat level
Critical
Signal strength
85/100
Source confidence
1 source
Published
2 hours ago
Intelligence Summary
A critical Progress Kemp LoadMaster vulnerability is being actively targeted in the wild. Security firm eSentire’s Threat Response Unit reports exploitation attempts linked to CVE-2026-8037. The flaw is an OS command injection reachable pre-auth, which can enable attackers to run commands. With a CVSS score of 9.6, the risk includes potential compromise without valid credentials. LoadMaster administrators should check for available patches and validate that mitigations and configuration hardening are applied.
Recommended Action
Prioritize immediate review, validate exposure, and patch or mitigate affected systems.
Topics
Original reporting
The Hacker News
Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts
Open original source