ShellCodeX
Tools • Events • News • Insights
ShellCodeX Intelligence Brief
CRITICAL Vulnerabilities

Progress Kemp LoadMaster pre-auth command injection under active exploit

Source headline: Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts

Threat level Critical
Signal strength 85/100
Source confidence 1 source
Published 2 hours ago

Intelligence Summary

A critical Progress Kemp LoadMaster vulnerability is being actively targeted in the wild. Security firm eSentire’s Threat Response Unit reports exploitation attempts linked to CVE-2026-8037. The flaw is an OS command injection reachable pre-auth, which can enable attackers to run commands. With a CVSS score of 9.6, the risk includes potential compromise without valid credentials. LoadMaster administrators should check for available patches and validate that mitigations and configuration hardening are applied.

Recommended Action

Prioritize immediate review, validate exposure, and patch or mitigate affected systems.

Topics

#command-injection #active-exploitation #cve-2026-8037 #loadmaster #preauth
Original reporting The Hacker News Progress Kemp LoadMaster Pre-Auth RCE Flaw Faces Active Exploitation Attempts
Open original source