logo

Kemp LoadMaster RCE Vulnerability Exploited in the Wild After Public PoC Release

ID: 3e65b4c6-b63b-596c-860a-d1f793ec80bd

STIX ID: report--3e65b4c6-b63b-596c-860a-d1f793ec80bd

Feed Name: securityonline.info

Threat Score
80/100

Date Published: 2026-07-01

Date Updated: 2026-07-02

Author: Do Son

...
...

Kemp LoadMaster is affected by a critical unauthenticated RCE (CVE-2026-8037) reachable via the /accessv2 API that can yield root command execution; proof-of-concept code was publicly released June 29, 2026 and exploitation attempts were observed, while Progress issued patches on June 4 — administrators should apply updates or disable the API and review logs for related IoCs.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.